[Canvas] D2 Exploitation Pack 1.67, August 1 2013

DSquare Security sales at d2sec.com
Tue Jul 30 14:34:15 EDT 2013

D2 Exploitation Pack 1.67 has been released with 6 new exploits.

This month we provide you a client-side exploit for ABB DataManager 
National Instruments which has been included in D2 ClientInsider and 
two remote code execution exploits for HP System Management Homepage
and Apache Struts2.

Also you can find three new exploits for pwnrouter.

D2 Exploitation Pack is updated each month with new exploits and tools.
For customized exploits or tools please contact us at info at d2sec.com.

For sales inquiries and orders, please contact sales at d2sec.com

DSquare Security, LLC


version 1.67 Aug 1, 2013

canvas_modules - Added : 
- d2sec_cwui : ABB DataManager National Instruments cwui.ocx Remote Code Execution Vulnerability (Exploit Windows)
- d2sec_hpsmh : HP System Management Homepage Command Injection Vulnerability (Exploit Windows)
- d2sec_struts4 : Apache Struts2 remote command execution vulnerability (Web Exploit)
- d2sec_pwnrouter :
  - TP-LINK TL PS110U Information disclosure Vulnerability
  - Linksys WRT160Nv2 OS Command Injection Vulnerability
  - Linksys WRT160Nv2 Directory Traversal Vulnerability
  - minor improvements

canvas_modules - Updated :
- d2sec_clientinsider updated with new exploit

More information about the Canvas mailing list