[Canvas] CANVAS 6.95 released
Alfredo Pesoli
alfredo at immunityinc.com
Tue Aug 26 15:04:37 EDT 2014
########################################################################
# *CANVAS Release 6.95* #
########################################################################
*Date*: 26 August 2014
*Version*: 6.95
*Download URL*: https://canvas.immunityinc.com/cgi-bin/getcanvas.py
*Release Notes*:
For this release we bring you two linux local privilege escalations, a
WinXP local privilege escalation, a UAF on IE11 32bit, a module
exploiting the Firefox_nsSVGValue out of bound access vulnerability, and
a recon module for Outlook Web Access.
==Changes==
o Linux x86_64 NEW Remote Resolver
o MOSDEF Linux x86_64 fixes
==New Modules==
o linux_pppol2tp (linux x86 local privilege escalation, check module for
versioning info)
o linux_tty_race (linux x86_64 local privilege escalation >= 3.14.1 <=
3.15.4)
o mqac (Windows XP local privilege escalation)
o ie_cmarkup_2014_1776 (IE11 Use After Free)
o firefox_nsSVGValue (Out of bound access)
o owa_ipleak (Outlook Web Access internal IP leak recon module)
*CANVAS Tips 'n' Tricks*:
We have a new x86_64 Linux Remote Resolver. Fancying to run a pcap
sniffer over a 64bit CANVAS node? You can now!
Did you know that mqac is still a zero day? And it might stay like that
forever.
*Links*:
Support email : support at immunityinc.com
Sales support : sales at immunityinc.com
Support/Sales phone : +1 786-220-0600
########################################################################
########################################################################
More information about the Canvas
mailing list