Skip to content
/ CVE-2018-15982 Public

Aggressor Script to launch IE driveby for CVE-2018-15982.

28 stars 7 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

scanfsec/CVE-2018-15982

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
CVE-2018-15982.cna
CVE-2018-15982.cna
 
 
README.md
README.md
 
 
demo.gif
demo.gif
 
 

Repository files navigation

Credits

Description

Aggressor Script to launch an Internet Explorer driveby attack using CVE-2018-15982 exploit for Flash player.

Affected Product Versions

  • Adobe Flash Player <= 31.0.0.153
  • Adobe Flash Player Installer<= 31.0.0.108

Usage:

  • Click Host > Host CVE-2018-15982 Payload > Host
  • Send link to victim or embed as part of other pages or a redirect
  • Victim hits link with IE and outdated flash, you get a shell back in IE sandbox.

Demo

Alt text

CobaltStrike

  • Load CVE-2018-15982.cna

About

Aggressor Script to launch IE driveby for CVE-2018-15982.

Resources

Readme
Activity

Stars

28 stars

Watchers

2 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published