MS IE6 "Aurora" Exploit

No replies
numb's picture
Joined: 2009/11/17

Just pointing out that the exploit from the recent "China Hacks Google" headlines was added to the MSF exploit database.


Module: exploit/windows/browser/ie_aurora

This module exploits a memory corruption flaw in Internet Explorer. This flaw was found in the wild and was a key component of the "Operation Aurora" attacks that lead to the compromise of a number of high profile companies. The exploit code is a direct port of the public sample published to the Wepawet malware analysis site. The technique used by this module is currently identical to the public sample, as such, only Internet Explorer 6 can be reliably exploited. This exploit module was written by unknown () and hdm (


My contact information is invalid at the moment.