On August 19th, HD Moore merged the first exploit of many for Wyse thin clients, written by KF, into Metasploit SVN.
http://pastie.org/588882
This appears to be an exploit for the 'hagent.exe' buffer overflow vulnerability that was making news in July of this year. According to Wyse Security Advisory (WSB09-01), this vulnerability affected WDM Server 4.7.x, Wyse 9x, 5x and 3x series devices.
It will be interesting to see what else KF has up his sleeves....
In other MSF news, digininja recently released two beta Metasploit modules - DHCP Exhaustion and DNS MITM. Feedback is highly welcome....
No comments:
Post a Comment