EvilZone

Hacking and Security => Hacking and Security => : KingCasra March 02, 2015, 05:24:16 PM

: CVE-2015-0057
: KingCasra March 02, 2015, 05:24:16 PM

Does anybody know how to get the binary files associated with this? Is it on Metasploit or can I just download it standalone?

: Re: CVE-2015-0057
: Lapsenis March 04, 2015, 03:44:50 PM

I don't think any exploits are available for public.

: Re: CVE-2015-0057
: KingCasra March 04, 2015, 05:12:45 PM

Do you know who the author is? I'm trying to reference his research in a project I was just hoping something would have been public.

: Re: CVE-2015-0057
: ZiLOG March 05, 2015, 07:16:21 AM

Udi Yavo (https://il.linkedin.com/in/udiyavo) from enSilo (https://www.ensilo.com/one-bit-rule-compromising-windows-single-bit/) has been credited with disclosing the vulnerability. I've found the blog post below to contain the most useful technical information regarding the vulnerability, including a proof-of-concept video, which uses a standalone executable. As of today there is no public release of it for Metasploit.

http://breakingmalware.com/vulnerabilities/one-bit-rule-bypassing-windows-10-protections-using-single-bit/ (http://breakingmalware.com/vulnerabilities/one-bit-rule-bypassing-windows-10-protections-using-single-bit/)

: Re: CVE-2015-0057
: KingCasra March 05, 2015, 04:33:46 PM

Thanks man. I really appreciate that.