A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #15396  by DWS94
 Wed Aug 29, 2012 10:51 am
Oracle Java 7 Update 6, and possibly other versions, allows remote attackers to execute arbitrary code via a crafted applet, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class

cve2012xxxx/Gondzz.class -
http://pastebin.com/pdrkL3xV

cve2012xxxx/Gondvv.class
http://pastebin.com/YrY5u7RZ

A Metasploit module developed to target this Java 0-day
EXP
http://pastie.org/4595899
 #15439  by Xylitol
 Fri Aug 31, 2012 8:32 am
Attachments
infected
(536.32 KiB) Downloaded 114 times
  • 1
  • 2
  • 3
  • 4
  • 5
  • 7