Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-3103 PoC — Microsoft Windows Vista和Windows 7畸形SMB报文远程拒绝服务漏洞

Source
https://github.com/sooklalad/ms09050
Associated Vulnerability
Title:Microsoft Windows Vista和Windows 7畸形SMB报文远程拒绝服务漏洞 (CVE-2009-3103)
Description:Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via an & (ampersand) character in a Process ID High header field in a NEGOTIATE PROTOCOL REQUEST packet, which triggers an attempted dereference of an out-of-bounds memory location, aka "SMBv2 Negotiation Vulnerability." NOTE: some of these details are obtained from third party information.
Description
cve-2009-3103
File Snapshot

 [4.0K]  /data/pocs/54108b8dbaa814ef1c0f97f8ac4934d33556cd23
└── [4.0K]  09050
    └── [4.0K]  09050
        ├── [ 52K]  09050.cpp
        ├── [ 110]  ReadMe.txt
        ├── [2.9K]  smb.h
        ├── [ 310]  stdafx.cpp
        ├── [ 364]  stdafx.h
        └── [ 366]  targetver.h

2 directories, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →