Home
Tools
Malybuzz
peepdf
Pub
Advisories
Exploits
Articles
Presentations
Var
Scripts
About
Home
Workshop
Analysis of a CVE-2013-3346/CVE-2013-5065 exploit with peepdf
Conferences
Exploits
PDF
peepdf
Shellcode
Tools
Vulnerabilities
Workshop
There are already some good blog posts talking about this exploit, but I think this is a really good example to show how
peepdf
works and what you can learn next month if you attend the
1day-workshop
“Squeezing Exploit Kits and PDF Exploits”
at
Troopers14
or the
2h-workshop
"PDF Attack: A Journey from the Exploit Kit to the Shellcode"
at
Black Hat Asia (Singapore)
. The mentioned exploit was using the
Adobe Reader ToolButton Use-After-Free vulnerability
to execute code in the victim's machine and then the
Windows privilege escalation 0day
to bypass the
Adobe sandbox
and execute a new payload without restrictions.
This is what we see when we open the PDF document (
6776bda19a3a8ed4c2870c34279dbaa9
) with
peepdf
:
Submitted by jesparza on Thu, 2014/02/20 - 21:48
Read more
Español
Search this site:
Citadel
Tools
Research
Vulnerabilities
Conferences
Black Hat
Exploits
Fraud
Scripts
Shellcode
Feodo
Specifications
Challenge
NFC
PDF
Botnets
ZeuS
Mobile
Analysis
Javascript
Reversing
Malcode
Spam
Botnet
Python
Security
Tatanga
Exploit kits
Malware
peepdf
more tags
Latest blog posts
Dridex spam campaign using PDF as infection vector
Adding a scoring system in peepdf
Travelling to the far side of Andromeda at Botconf 2015
Black Hat Arsenal peepdf challenge solution
Black Hat Arsenal peepdf challenge
peepdf news: GitHub, Google Summer of Code and Black Hat
Andromeda/Gamarue bot loves JSON too (new versions details)
Quick analysis of the CVE-2013-2729 obfuscated exploits
Dissecting SmokeLoader (or Yulia's sweet ass proposition)
Released peepdf v0.3
more
Security Posts
Infocon: green
Here’s your chance to own a decommissioned US government supercomputer
Health care giant comes clean about recent hack and paid ransom
AWS S3 storage bucket with unlucky name nearly cost developer $1,300
Mysterious “gpt2-chatbot” AI model appears suddenly, confuses experts
China Has a Controversial Plan for Brain-Computer Interfaces
The Dangerous Rise of GPS Attacks
Another Day, Another NAS: Attacks against Zyxel NAS326 devices CVE-2023-4473, CVE-2023-4474, (Tue, Apr 30th)
The White House Has a New Master Plan to Stop Worst-Case Scenarios
Man Who Mass-Extorted Psychotherapy Patients Gets Six Years
Curvance: Invariants unleashed
Cisco Talos at RSAC 2024
Volatile Data Acquisition from Live Linux Systems: Part I
Cursos Online de Seguridad Informática & hacking para MAYO de 2024 en HackBySecurity
Zloader Learns Old Tricks
Sifting through the spines: identifying (potential) Cactus ransomware victims
3 healthcare organizations that are building cyber resilience
5 ways to strengthen healthcare cybersecurity
Cybersecurity Concerns for Ancillary Strength Control Subsystems
Update on Naked Security
more