CVE-2012-4969 Microsoft Internet Explorer execCommand Vulnerability...
Timeline : Vulnerability found exploited in the wild and discovered by Eric Romang First details of the vulnerability the 2012-09-14 Advanced details of the vulnerability provided by binjo the...
View ArticleMS12-063 Out-of-Band Microsoft Security Update for Internet Explorer Fix 0day
Microsoft has release, the 21 September 2012, as planned in his “Microsoft Security Bulletin Advance Notification for September 2012“, one security bulletin MS12-063 in order to fix multiple 5 security...
View ArticleMS11-080 Microsoft Windows AfdJoinLeaf Privilege Escalation Metasploit Demo
Timeline : Vulnerability reported to Microsoft by Bo Zhou Coordinated public release of the vulnerability the 2011-10-11 Metasploit PoC provided the 2012-10-02 PoC provided by : Bo Zhou Matteo Memelli...
View ArticleCVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo
Timeline : Watering hole campaign first reported on a private mailing list the 2013-04-30 Watering hole campaign publicly disclosed by AlienVault and Invincea the 2013-04-30 0day exploit spotted by...
View ArticleCVE-2013-2551 MS13-037 Internet Explorer Vulnerability Metasploit Demo
Timeline : Vulnerability exploited during Pwn2Own 2013 by VUPEN the 2013-03-07 Vulnerability corrected by vendor the 2013-05-14 Details on the vulnerability provided by VUPEN the 2013-05-22 Metasploit...
View ArticleCVE-2013-3918 CardSpaceClaimCollection ActiveX Integer Underflow
Timeline : Vulnerability discovered exploited in the wild Patched by the vendor via MS13-090 the 2013-11-12 Metasploit PoC provided the 2013-11-15 PoC provided by : Unknown juan vazquez Reference(s) :...
View ArticleMS15-132 Office OLE multiple DLL side loading vulnerabilities
Timeline : Vulnerabilities discovered and reported to the vendor by multiple security researchers Patched by the vendor via MS15-132 the 2015-12-06 Metasploit PoC provided the 2015–12-25 by Securify...
View ArticleCVE-2014-4113 Windows TrackPopupMenu Win32k NULL Pointer Dereference
Timeline : Vulnerability discovered exploited in the wild Patched by the vendor via MS14-058 the 2014–10-14 Metasploit PoC provided the 2014–10-24 PoC provided by : Unknown juan vazquez Spencer...
View ArticleMS16-007 CVE-2016-0019 Windows RDP Security Bypass
Timeline : Vulnerability discovered and reported to the vendor by Gal Goldshtein and Viktor Minin of Citadel Patched by the vendor through MS16-007 the 2016-01-12 Details of the vulnerability provided...
View ArticleCVE-2015-1701 Windows ClientCopyImage Win32k Exploit
Timeline : Vulnerability discovered exploited in the wild by FireEye the 2015-04-13 Patch provided by the vendor via MS15-051 the 2015-05-12 PoC provided by hfiref0x the 2015-05-12 Metasploit PoC...
View Article
