Wednesday, November 14, 2012

CVE-2012-5076 Java sample from "Cool" exploit pack

Here is quick post for a CVE-2012-5076 sample (from Cool pack, as described by Kafeine here Cool EK : "Hello my friend..." CVE-2012-5076 )






CVE #


CVE-2012-5076 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS. 



CVE-2012-5076 Java Applet JAX-WS Remote Code Execution Metasploit Demo











Download
 Download 327a1cbf1e1e06df765f959ad5b05089 new.jar (contact me if you need the password)
(password fixed, redownload if you tried it before Nov 14 3:30pm EST)


Automatic scan
https://www.virustotal.com/file/0d813ce9782e3df9ee56999531add7fee23ac1d30c9d1920665e78d098e7178f/analysis/


SHA256: 0d813ce9782e3df9ee56999531add7fee23ac1d30c9d1920665e78d098e7178f
SHA1: 76bac76730283b298fe67c5e301cf3f32d968e0a
MD5: 327a1cbf1e1e06df765f959ad5b05089
File size: 9.8 KB ( 10049 bytes )
File name: medianewjar
File type: JAR
Tags: cve-2012-5067 cve-2012-5074 exploit jar cve-2012-5076
Detection ratio: 11 / 42
Analysis date: 2012-11-13 17:52:33 UTC ( 13 hours, 5 minutes ago )
AntiVir EXP/Java.JAX-WS.A 20121113
Antiy-AVL - 20121113
Avast Java:CVE-2012-5076-A [Expl] 20121113
F-Secure Exploit:Java/CVE-2012-5076.A 20121113
GData Java:CVE-2012-5076-A 20121113
Kaspersky UDS:DangerousObject.Multi.Generic 20121113
Norman CVE_2012_5076.A 20121112
PCTools Trojan.Maljava 20121113
Sophos Troj/Java-LJ 20121113
Symantec Trojan.Maljava 20121113
TrendMicro-HouseCall TROJ_GEN.RCBH1KC 20121113
ViRobot JAVA.S.CVE-2012-5076.10049 20121113

9 comments:

  1. hi, i would like to have the password for my research prposes!! could you please mail it to stylemachi@gmail.com

    ReplyDelete
  2. hi the password you please mail it tosabri.metin697@gmail.com

    ReplyDelete
  3. hi the password you please mail it to sabri.metin697@gmail.com

    ReplyDelete
  4. hi, i would like to have the password for my research prposes!! could you please mail it to 9590899@gmail.com

    ReplyDelete
  5. hi the password you please mail it rserin75@hotmail.com

    ReplyDelete
  6. need password at sunilkr86@hotmail.com

    ReplyDelete
  7. hi the password you please mail it cryptr.org@gmail.com hurry up i test it.

    ReplyDelete
  8. All, email me (email in profile), if you need password. Do not leave your addresses here.
    If you already left a comment and requested, please email if you want it.
    thanks much

    ReplyDelete