Home
Tools
Malybuzz
peepdf
Pub
Advisories
Exploits
Articles
Presentations
Var
Scripts
About
Home
Workshop
Analysis of a CVE-2013-3346/CVE-2013-5065 exploit with peepdf
Conferences
Exploits
PDF
peepdf
Shellcode
Tools
Vulnerabilities
Workshop
There are already some good blog posts talking about this exploit, but I think this is a really good example to show how
peepdf
works and what you can learn next month if you attend the
1day-workshop
“Squeezing Exploit Kits and PDF Exploits”
at
Troopers14
or the
2h-workshop
"PDF Attack: A Journey from the Exploit Kit to the Shellcode"
at
Black Hat Asia (Singapore)
. The mentioned exploit was using the
Adobe Reader ToolButton Use-After-Free vulnerability
to execute code in the victim's machine and then the
Windows privilege escalation 0day
to bypass the
Adobe sandbox
and execute a new payload without restrictions.
This is what we see when we open the PDF document (
6776bda19a3a8ed4c2870c34279dbaa9
) with
peepdf
:
Submitted by jesparza on Thu, 2014/02/20 - 21:48
Read more
Español
Search this site:
Mobile
Malware
Analysis
Botnets
Specifications
Python
Fraud
Black Hat
Feodo
Shellcode
Social Networking
Citadel
Botnet
Exploit kits
Scripts
Tatanga
Challenge
Security
PDF
Exploits
Conferences
Tools
NFC
ZeuS
Spam
Research
Javascript
peepdf
Vulnerabilities
Malcode
more tags
Latest blog posts
Dridex spam campaign using PDF as infection vector
Adding a scoring system in peepdf
Travelling to the far side of Andromeda at Botconf 2015
Black Hat Arsenal peepdf challenge solution
Black Hat Arsenal peepdf challenge
peepdf news: GitHub, Google Summer of Code and Black Hat
Andromeda/Gamarue bot loves JSON too (new versions details)
Quick analysis of the CVE-2013-2729 obfuscated exploits
Dissecting SmokeLoader (or Yulia's sweet ass proposition)
Released peepdf v0.3
more
Security Posts
Infocon: green
How Trump Could Wind up Making Globalism Great Again
Secure your Azure Stack private cloud with sensor-based packet visibility
Examples of How The Financial Industry Is Navigating the Current Wave of Digital Disruption
Building an Empire one PowerShell Exploit at a Time
Reduce dissatisfaction with your Skype deployments
Making The Shift to Network Security Resilience
Network Security Resilience – What Is It?
Building a data lake? Tips for advanced data analysis.
Ixia at SC18
SNMP: The ABCs of Network Visibility
Are your IPsec Tunnels Misbehaving?
Bandersnatch y ET el Extraterrestre Parte 1 de 2 (o cómo hacer un perfecto homenaje a los programadores de videojuegos de los ochenta
An Astonishing 773 Million Records Exposed in Monster Breach
Trump Must Be a Russian Agent; the Alternative Is Too Awful
Dynamic Data Resolver (DDR) - IDA Plugin
Historical OSINT - A Portfolio of Fake Tech Support Scam Domains - An Analysis
A 'Fortnite' Vulnerability Exposed Accounts to Takeover
Kubernetes: Kube-Hunter 10255
Kubernetes: unauth kublet API 10250 token theft & kubectl
more
