Full Disclosure: Multiple 0-days in Dark Comet RAT

Multiple 0-days in Dark Comet RAT

From: "Hertz, Jesse" <jesse_hertz () brown edu>
Date: Mon, 8 Oct 2012 16:33:45 -0400

SQL Injection and Arbitrary File Access present in Command and Control
server of DarkComet RAT

for more info see:
http://matasano.com/research/PEST-CONTROL.pdf

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Multiple 0-days in Dark Comet RAT Hertz, Jesse (Oct 09)
- Re: Multiple 0-days in Dark Comet RAT Philip Whitehouse (Oct 10)
  - Re: Multiple 0-days in Dark Comet RAT Thor (Hammer of God) (Oct 10)
  - Re: Multiple 0-days in Dark Comet RAT Pascal Ernster (Oct 11)
    - Re: Multiple 0-days in Dark Comet RAT Valdis . Kletnieks (Oct 11)
    - Re: Multiple 0-days in Dark Comet RAT Gage Bystrom (Oct 11)
    - Re: Multiple 0-days in Dark Comet RAT Julius Kivimäki (Oct 11)
    - Re: Multiple 0-days in Dark Comet RAT Hertz, Jesse (Oct 14)
    - Re: Multiple 0-days in Dark Comet RAT Valdis . Kletnieks (Oct 15)
    - Re: Multiple 0-days in Dark Comet RAT Hertz, Jesse (Oct 17)
- Re: Multiple 0-days in Dark Comet RAT kaveh ghaemmaghami (Oct 18)

(Thread continues...)