CVE-2019-0708 PoC — Microsoft Remote Desktop Services 资源管理错误漏洞

Source

Associated Vulnerability

Title:Microsoft Remote Desktop Services 资源管理错误漏洞 (CVE-2019-0708)
Description:A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Description

Public work for CVE-2019-0708

Readme

# bluekeep
Public work for CVE-2019-0708

### **2019-11-17 Update** ###

Added Windows 7 32bit exploit POC code. 

Using the address within the POC exploit code I had ~80% success rate against my test VM.
It could likely be modfied to increase.

#### **Usage** ####

Replace the buf variable with your shellcode.
Update the host variable to your target.

`python3 win7_32_poc.py`

### **Requirements** ###
* Python3

### **Legal Disclaimer** ###
This project is made for educational and ethical testing purposes only. Usage of for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

File Snapshot


 [4.0K]  /data/pocs/7ec8288456c4f7a1fbb5b2fae78e03b7358447d2
├── [685K]  0xeb_bp_BlueKeep_Technical_Analysis.pdf
├── [ 20K]  bluekeep_kshellcode_x86.asm
├── [ 34K]  LICENSE
├── [1.7K]  rc4.py
├── [5.4K]  rdp_crypto.py
├── [ 16K]  rdp.py
├── [ 784]  README.md
└── [7.2K]  win7_32_poc.py

0 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!