Immunity CANVAS Early Updates


Legal Information

The information provided below is only available to subscribers of Immunity's Early Updates and is subject to the terms of the Immunity CANVAS Software License Agreement located HERE. It is the customer's responsibility to maintain the confidentiality of this information, and any tools, techniques, or information provided as part of the Immunity's CANVAS Early Update Program.

This information is not for re-release to any third party, including contractors, consultants, and temporary workers.

Latest Updates

CANVAS Modules and Proof of Concepts

  • November 12, 2008 GoodTech SSH Server (current distributed version) Post-Auth Remote Code Execution Exploit [2K, XP, 2K3]
  • November 6, 2008 Simple Machines Forum * => 1.1.6 Remote Code Execution Exploit
  • November 4, 2008 Adobe Acrobat Reader util.printf() exploit
  • November 3, 2008 Mantis BugTracker Remote PHP code execution exploit.

  • Previous Month's CANVAS Early Updates

  • October 28, 2008 Module to brute force the basic authentication used in most common routers administration panel.
  • October 27, 2008 The Windows rootkit has been updated with file and directory hiding capabilities and has been released to our CANVAS Early Updates customers. This functionality has also been incorporated into the CANVAS file browser. Any file or directory with the "mosdef" prefix will automatically be hidden as well.
  • October 24, 2008 Exploit (Windows 2000 and XP SP3 English) for the Windows Server Service Vulnerability (MS08-067)
  • October 24, 2008 Exploit (Windows 2000) for the Windows Server Service Vulnerability (MS08-067)
  • October 23, 2008 PoC (Windows 2000) for the Windows Server Service Vulnerability (MS08-067)
  • October 23, 2008 AIX Local Root Exploitation support (CVE-2007-4513 added)
  • October 22, 2008 Exploit (Windows 2000) for the Windows Internet Printing Service Vulnerability (MS08-062)
  • October 20, 2008 AIX Local Root Exploitation support (updated)
  • October 20, 2008 The newest enhancement to the ram_dumper module has the driver dump the contents of RAM directly across the network back to CANVAS. This minimizes disk interaction on the remote host and provides a more reliable means to get the RAM contents back to CANVAS.
  • October 17, 2008 AIX Local Root Exploitation support
  • October 17, 2008 PoC (command execution) for the Microsoft HIS Vulnerability (MS08-059)
  • October 17, 2008 PoC (overflow trigger) for the Windows SMB Server Vulnerability (MS08-063)
  • October 16, 2008 PoC (overflow trigger) for the Windows Internet Printing Service Vulnerability (MS08-062)
  • October 9, 2008 Kernel driver for the Windows platform that dumps physical RAM to a binary file on disk, which is retrieved automatically via CANVAS. Access this tool via the "Trojans" menu.
  • October 9, 2008 A reliable version of the Firefox UTF8 exploit has been released


  • Copyright © 2003 - Immunity, Inc.
    All Rights Reserved.