[Canvas] D2 Exploitation Pack 1.85, February 4 2015

DSquare Security sales at d2sec.com
Tue Feb 3 20:12:32 EST 2015

D2 Exploitation Pack 1.85 has been released with 5 new exploits.

This month we provide you three client side exploits for SkinCrafter3 
which have been included in D2 Client Insider and a remote code 
execution for WebView on Android.

Also you can find a new exploit included in pwnrouter.

D2 Exploitation Pack is updated each month with new exploits and tools.
For customized exploits or tools please contact us at info at d2sec.com.

For sales inquiries and orders, please contact sales at d2sec.com

DSquare Security, LLC


version 1.85 Feb 04, 2015

canvas_modules - Added: 
- d2sec_skincrafter : SkinCrafter3 SkinCrafter3_vs2005.dll ActiveX Buffer Overflow Vulnerability (Exploit Windows)
- d2sec_skincrafter2 : SkinCrafter3 SkinCrafter3_vs2008.dll ActiveX Buffer Overflow Vulnerability (Exploit Windows)
- d2sec_skincrafter3 : SkinCrafter3 SkinCrafter3_vs2010.dll ActiveX Buffer Overflow Vulnerability (Exploit Windows)
- d2sec_pwnrouter:
  - Pirelli ADSL2/2+ Wireless Router P.DGA4001N Remote Information Disclosure 

canvas_modules - Updated :
- d2sec_clientinsider updated with new exploits

d2sec_modules - Added: 
- d2sec_addjavascriptinterface: WebView addJavascriptInterface Remote Code Execution Vulnerability (Android Exploit)

More information about the Canvas mailing list