OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
[Dailydave] Flash 0day

From: Intevydis (adminvulndisco.net)
Date: Tue Dec 06 2011 - 14:17:07 CST


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi list,

Recently we've released Flash 0day exploit with Vulndisco SA
(http://intevydis.com/sa.shtml)

Great demo of this exploit in action -
http://partners.immunityinc.com/movies/VulnDisco-Flash0day-v2.mov . The
video also demonstrates IE sandbox escape module from White Phosphorus
exploit pack.

Flash exploit makes use of two vulnerabilities, bypasses DEP/ASLR and
works on Win7/WinXP with FF, Chrome and IE. OSX version is coming.

Best,
Evgeny Legerov
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk7eeEIACgkQY8Flb3OI+Q2O6QCgoShBvZyIj4/uTsRP4JjJ0z4S
SXsAn3TtzUmCCgBR0Pbihxmt2WzQee4H
=fI4Z
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydavelists.immunityinc.com
https://lists.immunityinc.com/mailman/listinfo/dailydave