| Name | lnk_exec |
| CVE | CVE-2015-0096 |
| Exploit Pack | CANVAS |
| Description | lnk_exec |
| Notes | References: https://technet.microsoft.com/library/security/ms15-020 CVE Name: CVE-2015-0096 VENDOR: Microsoft NOTES: Tested on: - Windows 7 (32bit) - Internet Explorer 8 (a popup will appear if Protected Mode is enabled) - Internet Explorer 9 - Internet Explorer 10 (a popup will appear if Protected Mode is enabled) - Internet Explorer 11 (a popup will appear if Protected Mode is enabled) Use port 80 as the server port (Windows requirement related to WebDAV). Also, under the Response tab of ClientD main window, the option "Respond directly with exploit" must be selected. NOTE: To trigger the exploit the content icon of the WebDAV folder must be redrawn. If for some reasons Explorer (launched by IE) is in background, it will fail to trigger. Date public: 03/11/2015 CVE Url: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0096 CVSS: 9.3 |
| Learn more about the CANVAS Exploit Pack here: CANVAS |