Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-1006 PoC — Microsoft Windows Communication Foundation和Windows Identity Foundation 授权问题漏洞

Source
https://github.com/521526/CVE-2019-1006
Associated Vulnerability
Title:Microsoft Windows Communication Foundation和Windows Identity Foundation 授权问题漏洞 (CVE-2019-1006)
Description:An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.
Readme
# CVE-2019-1006

# Usage: 
Enter "python CVE-2019-1006.py "url"" in the terminal, where url is the URL of the RDG Gateway server to be tested.
# For example: 
python CVE-2019-1006.py "https://www.aaa.com/"
File Snapshot

 [4.0K]  /data/pocs/4169b20f8dd57057fe3b72cbae473e3f49952dd6
├── [1.3K]  CVE-2019-1006.py
└── [ 206]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →