Recognize-Security

Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit

Posted by Trancer on Feb 20 2009

Just finish writing a quick Metasploit exploit module for the Microsoft Internet Explorer Object Clone Deletion Memory Corruption vulnerability.

Tested successfully on Windows XP SP3, Windows Vista SP1 and Windows Server 2003 SP2 (without patch 961260 of course).
Update: also tested successfully on Windows Server 2008 with no DEP (OptOut – iexplorer.exe).

Download ms09_002_object_delete.rb.

Was a fun one to play with ^_^

References:
MS09-002
CVE-2009-0075
BID 33627
OSVDB 51839
ZDI-09-011

Categories: Exploits, Metasploit

1 Comments | Comments RSS | TrackBack URL

One Response to “Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit”

Recognize-Security | Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) Proof-of-Concept exploit says:

February 24, 2009 at 10:47 am

[...] the Metasploit module I wrote for it, it has been tested successfully on Windows XP SP3 and Windows Vista SP1 (no 961260 [...]

Recognize-Security Welcome to the Machine February 2009

Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit Posted by Trancer on Feb 20 2009 Just finish writing a quick Metasploit exploit module for the Microsoft Internet Explorer Object Clone Deletion Memory Corruption vulnerability. Tested successfully on Windows XP SP3, Windows Vista SP1 and Windows Server 2003 SP2 (without patch 961260 of course). Update: also tested successfully on Windows Server 2008 with no DEP (OptOut – iexplorer.exe). Download ms09_002_object_delete.rb. Was a fun one to play with ^_^ References: MS09-002 CVE-2009-0075 BID 33627 OSVDB 51839 ZDI-09-011 Categories: Exploits, Metasploit 1 Comments \| Comments RSS \| TrackBack URL One Response to “Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit” Recognize-Security \| Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) Proof-of-Concept exploit says: February 24, 2009 at 10:47 am [...] the Metasploit module I wrote for it, it has been tested successfully on Windows XP SP3 and Windows Vista SP1 (no 961260 [...] Leave a Reply Click here to cancel reply. Name (required) Mail (will not be published) (required) Website	Categories Advisories Articles Exploitation Exploits LOLz Malware Metasploit Presentations Rec-Sec Security News Tools Vulnerabilities Web Application Security Archives March 2010 January 2010 December 2009 November 2009 October 2009 September 2009 August 2009 July 2009 June 2009 May 2009 April 2009 March 2009 February 2009 December 2008 November 2008 October 2008 September 2008 August 2008 January 2008 June 2007 May 2007 April 2007 March 2007 February 2007 Pages About Recognize-Security Links BinaryVision BlackHat Security BugSec Ltd. Digital Whisper Extraexploit Inj3ct0r exploit database milw0rm NiX IRC Network NullByte Pankaj Kohli Peter Van Eeckhoutte The Metasploit Project TryThis0ne Udi Mosayev Uninformed xorl eax, eax Meta RSS 2.0 ATOM 1.0 RDF 1.0 Links OPML OpenSearch
Valid XHTML \| Valid CSS \| RSS \| Comments RSS Copyright © 2009 Recognize-Security. Some rights reserved. ~~Security~~ Hacking, However, is an art, not a science.

February 2009

Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit

One Response to “Microsoft Internet Explorer Object Clone Deletion Memory Corruption (MS09-002) exploit for Metasploit”

Leave a Reply