Metasploit 3.7.2 adds 11 new exploits

Metasploit is a free, open source penetration testing solution.

Metasploit now ships with 698 exploit modules, 358 auxiliary modules, and 54 post modules.

11 new exploits, 1 new auxiliary module, and 15 new post modules have been added since the last release.

New features include remote registry commands for Meterpreter, import parsers moved to nokogiri streaming parsers (for quicker parsing of large XML files), and updates to the egghunter payload to help the payload bypass DEP.

New exploit modules

  • MS11-050 IE mshtml!CObjectElement Use After Free
  • AWStats Totals =< v1.14 multisort Remote Command Execution
  • IBM Tivoli Endpoint Manager POST Query Buffer Overflow
  • Cisco AnyConnect VPN Client ActiveX URL Property Download and Execute
  • Magix Musik Maker 16 .mmm Stack Buffer Overflow
  • VisiWave VWR File Parsing Vulnerability
  • GoldenFTP PASS Stack Buffer Overflow
  • DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflow
  • 7-Technologies IGSS <= v9.00.00 b11063 IGSSdataServer.exe Stack Overflow
  • 7-Technologies IGSS 9 Data Server/Collector Packet Handling Vulnerabilities
  • 7-Technologies IGSS 9 IGSSdataServer .RMS Rename Buffer Overflow.


Subscribe to the Help Net Security breaking news e-mail alerts:


Don't miss