[Canvas] D2 Exploitation Pack 1.65, June 6 2013

DSquare Security sales at d2sec.com
Wed Jun 5 21:16:43 EDT 2013

D2 Exploitation Pack 1.65 has been released with 6 new exploits.

This month we provide you a client-side exploit for IBM SPSS SamplePower which 
has been included in D2 ClientInsider and a remote code execution exploit for
Novell ZENWorks Configuration Management.

Also you can find two new exploits for pwnrouter and a local privilege 
escalation for Linux and another one for Infotecs product.

D2 Exploitation Pack is updated each month with new exploits and tools.
For customized exploits or tools please contact us at info at d2sec.com.

For sales inquiries and orders, please contact sales at d2sec.com

DSquare Security, LLC


version 1.65 June 6, 2013

canvas_modules - Added :
- d2sec_c1sizer : IBM SPSS SamplePower c1sizer ActiveX Buffer Overflow Vulnerability (Exploit Windows)
- d2sec_zcm2 : Novell ZENWorks Configuration Management Arbitrary File Upload Remote Code Execution Vulnerability (Exploit Windows)
- d2sec_execwrapper :
  - Infotecs products Insecure File Permissions Local Privilege Escalation Exploit
- d2sec_kernvuln :
  - a 64bit exploit for Linux sock_diag_handlers[] Local Privilege Escalation 
- d2sec_pwnrouter :
  - TP-LINK TL-WA701N / TL-WA701ND Directory Traversal Vulnerability

canvas_modules - Updated :
- d2sec_clientinsider updated with new exploit

More information about the Canvas mailing list