advanced-threat-research

3 exploits Active since Aug 2007
CVE-2020-16898 NOMISEC HIGH WORKING POC
Windows 10 and Windows Server 2016/2019 - Remote Code Execution via ICMPv6 Router Advertisement
<p>A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.</p> <p>To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer.</p> <p>The update addresses the vulnerability by correcting how the Windows TCP/IP stack handles ICMPv6 Router Advertisement packets.</p>
209 stars
CVSS 8.8
CVE-2007-4559 NOMISEC CRITICAL SCANNER
Python < 3.6.16 - Path Traversal via Tarfile Extract Functions
Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.
82 stars
CVSS 9.8
CVE-2020-16899 NOMISEC HIGH WORKING POC
Windows 10 and Windows Server 2016/2019 - Denial of Service via ICMPv6 Router Advertisement Packet Handling
<p>A denial of service vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could cause a target system to stop responding.</p> <p>To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer. The vulnerability would not allow an attacker to execute code or to elevate user rights directly.</p> <p>The update addresses the vulnerability by correcting how the Windows TCP/IP stack handles ICMPv6 Router Advertisement packets.</p>
20 stars
CVSS 7.5