CVE-2020-1350 PoC — Microsoft Windows DNS Server 输入验证错误漏洞

Source

https://github.com/T13nn3s/CVE-2020-1350

Associated Vulnerability

Title:Microsoft Windows DNS Server 输入验证错误漏洞 (CVE-2020-1350)
Description:A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka 'Windows DNS Server Remote Code Execution Vulnerability'.

Description

This Powershell Script is checking if your server is vulnerable for the CVE-2020-1350 Remote Code Execution flaw in the Windows DNS Service

Readme

> **Warning**
> This repository has been archived and is no longer actively maintained.

# CVE-2020-1350
This Powershell Script is checking if your server is vulnerable for the CVE-2020-1350 Remote Code Execution flaw in the Windows DNS Service.

## Supported OS for this workaround script
Windows Server 2012
Windows Server 2012 R2
Windows Server 2016 
Windows Server 2019

Note: Script is not supported (not tested) in Windows Server 2008 en Windows Server 2008 R2. Those operatingsystems are End-of-life.

## KB4569509: Guidance for DNS Server Vulnerability CVE-2020-1350
https://support.microsoft.com/en-us/help/4569509/windows-dns-server-remote-code-execution-vulnerability

## Please install the security patch 
Microsoft has released the security patch, you can download the patch here: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350

File Snapshot


 [4.0K]  /data/pocs/0af2c6038efc6991cd9857fbf338d600d0d40902
├── [7.7K]  CVE-2020-1350-checker.ps1
└── [ 875]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!