Home
Tools
Malybuzz
peepdf
Pub
Advisories
Exploits
Articles
Presentations
Var
Scripts
About
Home
Workshop
Analysis of a CVE-2013-3346/CVE-2013-5065 exploit with peepdf
Conferences
Exploits
PDF
peepdf
Shellcode
Tools
Vulnerabilities
Workshop
There are already some good blog posts talking about this exploit, but I think this is a really good example to show how
peepdf
works and what you can learn next month if you attend the
1day-workshop
“Squeezing Exploit Kits and PDF Exploits”
at
Troopers14
or the
2h-workshop
"PDF Attack: A Journey from the Exploit Kit to the Shellcode"
at
Black Hat Asia (Singapore)
. The mentioned exploit was using the
Adobe Reader ToolButton Use-After-Free vulnerability
to execute code in the victim's machine and then the
Windows privilege escalation 0day
to bypass the
Adobe sandbox
and execute a new payload without restrictions.
This is what we see when we open the PDF document (
6776bda19a3a8ed4c2870c34279dbaa9
) with
peepdf
:
Submitted by jesparza on Thu, 2014/02/20 - 21:48
Read more
Español
Search this site:
Shellcode
Challenge
peepdf
Python
Scripts
Spam
Javascript
Social Networking
Tools
Exploits
Conferences
Botnets
Fraud
Malcode
Specifications
Botnet
NFC
Malware
Feodo
Exploit kits
Vulnerabilities
Citadel
Research
Tatanga
Analysis
Mobile
Security
ZeuS
PDF
Black Hat
more tags
Latest blog posts
Dridex spam campaign using PDF as infection vector
Adding a scoring system in peepdf
Travelling to the far side of Andromeda at Botconf 2015
Black Hat Arsenal peepdf challenge solution
Black Hat Arsenal peepdf challenge
peepdf news: GitHub, Google Summer of Code and Black Hat
Andromeda/Gamarue bot loves JSON too (new versions details)
Quick analysis of the CVE-2013-2729 obfuscated exploits
Dissecting SmokeLoader (or Yulia's sweet ass proposition)
Released peepdf v0.3
more
Security Posts
Infocon: green
Facebook Fails, Russian Hacks, and More Security News This Week
Y después de Semana Santa: Eventos, Cursos y Charlas en Madrid, Cartagena de Índias, Málaga, Sevilla y Online. @elevenpaths @luca_d3 @0xWord
What is Port Scanning?
Mirai is still alive and using multiple old exploits on home routers
Key Findings of the Ixia Security Report
Network Flow Monitoring: The ABCs of Network Visibility
PayPal, Netflix, Gmail, and Uber users among targets in new wave of DNS hijacking attacks
Survey finds concerns related to cloud monitoring
Software Defined Networks (SDN): The ABCs of Network Visibility
The Malware Cloaking Device and How to Beat It
Monitoring performance where the action is: on the network edge
Lightwave Innovation Reviews Honors Ixia AresONE 400GE Test Platform
Extracting “Stack Strings” from Shellcode
Analyzing UDF Files with Python, (Fri, Apr 19th)
Give Your Network An Unfair Advantage Against Hidden Malware
Announcing the community-oriented osquery fork, osql
Ethical hacking as a post-graduation opportunity
Hack of the day #2: Command-Line Interface helpers
Pattern Welding Explained as Wearable Art
more
