Home
Tools
Malybuzz
peepdf
Pub
Advisories
Exploits
Articles
Presentations
Var
Scripts
About
Home
Workshop
Analysis of a CVE-2013-3346/CVE-2013-5065 exploit with peepdf
Conferences
Exploits
PDF
peepdf
Shellcode
Tools
Vulnerabilities
Workshop
There are already some good blog posts talking about this exploit, but I think this is a really good example to show how
peepdf
works and what you can learn next month if you attend the
1day-workshop
“Squeezing Exploit Kits and PDF Exploits”
at
Troopers14
or the
2h-workshop
"PDF Attack: A Journey from the Exploit Kit to the Shellcode"
at
Black Hat Asia (Singapore)
. The mentioned exploit was using the
Adobe Reader ToolButton Use-After-Free vulnerability
to execute code in the victim's machine and then the
Windows privilege escalation 0day
to bypass the
Adobe sandbox
and execute a new payload without restrictions.
This is what we see when we open the PDF document (
6776bda19a3a8ed4c2870c34279dbaa9
) with
peepdf
:
Submitted by jesparza on Thu, 2014/02/20 - 21:48
Add new comment
Read more
Español
Search this site:
Scripts
Mobile
Python
Tatanga
Citadel
PDF
Social Networking
Shellcode
Challenge
Javascript
Spam
Malcode
Black Hat
Tools
Research
Specifications
Exploits
Vulnerabilities
NFC
ZeuS
Botnets
Fraud
Analysis
Botnet
Feodo
Conferences
Malware
Security
peepdf
Exploit kits
more tags
Latest blog posts
Dridex spam campaign using PDF as infection vector
Adding a scoring system in peepdf
Travelling to the far side of Andromeda at Botconf 2015
Black Hat Arsenal peepdf challenge solution
Black Hat Arsenal peepdf challenge
peepdf news: GitHub, Google Summer of Code and Black Hat
Andromeda/Gamarue bot loves JSON too (new versions details)
Quick analysis of the CVE-2013-2729 obfuscated exploits
Dissecting SmokeLoader (or Yulia's sweet ass proposition)
Released peepdf v0.3
more
Security Posts
Infocon: green
<div class="feedflare">
about
Cómo saltarse Device Guard en Windows 10 con CVE-2017-8625
ISC Stormcast For Wednesday, September 6th 2017 https://isc.sans.edu/podcastdetail.html?id=5656, (Wed, Sep 6th)
Struts vulnerability patch released by apache, patch now, (Tue, Sep 5th)
Compiling a Windows Service With Mono on Kali
Podcast: Implications of the EU GDPR
The Mirai Botnet: A Look Back and Ahead At What's Next, (Tue, Sep 5th)
Wikto Scanner Download – Web Server Security Tool
LaCon2k17 Call for Pulpos
Join Fortinet at HPE Discover 2017!
Governmental Entities Bringing Financial Cybersecurity to Center Stage
An Inside Look at CVE-2017-0199 – HTA and Scriptlet File Handler Vulnerability
Support my videos on Patreon!
A Scheme to Encrypt the Entire Web Is Actually Working
Matthew Keys Sentenced to Two Years for Aiding Anonymous
Hacker Lexicon: What Are White Hat, Gray Hat, and Black Hat Hackers?
PowerLocker
El último superviviente (II) - iOS
more
