Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-0148 PoC — Microsoft Windows SMB 输入验证错误漏洞

Source
https://github.com/HakaKali/CVE-2017-0148
Associated Vulnerability
Title:Microsoft Windows SMB 输入验证错误漏洞 (CVE-2017-0148)
Description:The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, and CVE-2017-0146.
Readme
## EternalBlue = MS17-010 vulnerability


The code is a script written in Ruby that is part of the Metasploit Framework. Metasploit is a tool used by security professionals to test the security of computer systems and networks. It helps identify vulnerabilities and provides a platform for developing and executing exploits.

The script is used to detect the MS17-010 vulnerability, also known as EternalBlue. This vulnerability affected Windows systems and gained significant attention due to its role in the WannaCry ransomware attack.

The script attempts to determine if a target system is vulnerable to MS17-010 by performing a specific type of communication with the target system using the SMB protocol, which is used for file sharing and communication in Windows networks. By analyzing the response received during this communication, the script can determine if the target system is vulnerable to MS17-010 or not.

The script uses various functions and APIs provided by the Metasploit Framework to construct and send the necessary packets to the target system, and then interprets the response to make an assessment.
File Snapshot

 [4.0K]  /data/pocs/0203cfb98a0c93b3e365add4ff16bebead0a5cbf
├── [4.5K]  code.rb
├── [1.0K]  LICENSE
├── [1.1K]  README.md
└── [4.0K]  Shellcode.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →