Collection of working (live) browser exploits (malware)
From Malware Guru
Below is a list of WORKING, LIVE malware that we have collected for your experiment.
Browser Security Test. You can use them for your study purposes, for testing your anti-virus, IDS, IPS, ... security solutions. Or for evaluating your enterprise malware solutions.
You're very welcome to submit a malware to us; we'll host it here if it indeed works. Please send your submission to: mailto:submitmalware@malwareguru.org
| Exploit Name | Exploitable environment | CVE NO. | Exploit available | Popularly | File dropped | Actions after successful exploitation |
| MS05-052 | IE (COM Object-Msdds.dll) | CAN-2005-2127 | Not yet | *** | -- | Expliot test |
| MS06-014 | IE+MDAC | CVE-2006-0003 | Yes | ***** | (temp)\svchost.exe | "Found this vulnerability." message |
| MS06-042 | IE (Long URL) | CVE-2006-3869 CVE-2006-3873 | Yes | *** | (IE-temp)\test.avi (temp)\g0ld.com | "Found this vulnerability." message |
| MS06-055 | IE (VML) | CVE-2006-4868 | Not yet | ** | -- | Expliot test |
| MS06-067 | IE (DirectAnimation ActiveX) | CVE-2006-4777 | Yes | ** | (SystemRoot)\system32\a.exe (Temp)\Temp~\Cont~\\test.avi | "Found this vulnerability." message |
| MS07-004 | IE (VML), Replace MS06-055 | CVE-2007-0024 | Yes | ***** | (SystemRoot)\system32\~.exe (IE-temp)\test.avi | "Found this vulnerability." message |
| MS07-016 | IE (COM Objects) | CVE-2007-0219 CVE-2006-4697 | Not yet | ** | -- | Expliot test |
| MS07-017 | IE (Animated Cursor Handling) | CVE-2007-0038 | Not yet | ** | -- | Expliot test |
| MS07-033 | IE (Language Pack Installation) | CVE-2007-3027 | Not yet | ** | -- | Expliot test |
| MS07-055 | IE (Kodak Image Viewer) | CVE-2007-2217 | Not yet | ** | -- | Expliot test |
| MS08-011 | IE+Office Words (File Converter) | CVE-2007-0216 CVE-2008-0105 CVE-2008-0108 | Not yet | ** | -- | Expliot test |
| MS08-041 | IE+Snapshot Viewer for Access | CVE-2008-2463 | Yes | *** | c:\SnapShock.exe | Create File=> "c:\SnapShock.exe" |
| MS08-078 | IE XML Heap Corruption exploit | CVE-2008-4844 | Yes | ***** | launches calculator | launches calculator |
| Plugin-AdobeFlash | IE+Adobe Flash Player | CVE-2007-0071 | Yes | ***** | (IE-temp)\test.avi (temp)\orz.exe | "Found this vulnerability." message |
| Plugin-BEWS | IE+Symantec Backup Exec for Windows Server (BEWS) | CVE-2007-6016 CVE-2007-6017 | Not yet | * | -- | Expliot test |
| Plugin-LZ | IE+LZ (Ourgame GLWorld, aka Lianzong Game) | CVE-2008-0647 | Not yet | ** | -- | Expliot test |
| Plugin-QvodPlayer | IE+QvodPlayer | No CVE NO. | Not yet | * | -- | Expliot test |
| Plugin-RealPlayer11 | IE+Real Player 11 | CVE-2008-1309 | Yes | ***** | c:\U.exe | "Found this vulnerability." message |
| Plugin-StormII | IE+Baofeng StormII | CVE-2007-4816 CVE-2007-4943 | Not yet | * | -- | Expliot test |
| Plugin-Thunder | IE+Thunder | CVE-2007-6144 | Not yet | ** | -- | Expliot test |
| Video WebSite | by Phishing | Spoofing | Yes | **** | Download File | Run and "Found this vulnerability." message |
| Video ActiveX | by Phishing+Script | Spoofing | Yes | ***** | Download File | Run and "Found this vulnerability." message |
| Clickjacking | Firefox 3.0.5, Chrome 1.0.154.43, Safari 3.2.1,IE 7.0.6001 | Clickjacking | Yes | ** | Clickjacking | You will see phishing URL |
