Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-0601 PoC — Microsoft Windows CryptoAPI 信任管理问题漏洞

Source
https://github.com/apodlosky/PoC_CurveBall
Associated Vulnerability
Title:Microsoft Windows CryptoAPI 信任管理问题漏洞 (CVE-2020-0601)
Description:A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
Description
PoC for "CurveBall" CVE-2020-0601
Readme
# CVE-2020-0601 - CurveBall

## Highlights

 - PoC for CVE-2020-0601
 - Trivial solution for private-key of 1
 - Non-trivial solution for 1 < private-key < curve-order
 - Written in C, uses OpenSSL's libcrypto

## Requirements

 - Linux of some variety
 - ``apt install libssl libssl-dev``
   - Or whatever package mananger you use

## Compiling

 - ``make``

## Usage

 - ./curveball MicrosoftECCProductRootCA2018.cer

 - ./curveball -d 555 MicrosoftECCProductRootCA2018.cer
File Snapshot

 [4.0K]  /data/pocs/3e18ea0e8e15ef45d9c5ccaf8630ae2afdeeb7e5
├── [ 14K]  curveball.c
├── [1.3K]  LICENSE
├── [ 527]  Makefile
├── [1.1K]  MicrosoftECCProductRootCA2018.cer
├── [1.1K]  MicrosoftEVECCRootCA2017.cer
├── [ 476]  README.md
└── [5.5M]  slides.pdf

0 directories, 7 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →