CVE-2020-1301 PoC — Microsoft Windows Server Message Block 安全漏洞

Source

https://github.com/shubham0d/CVE-2020-1301

Associated Vulnerability

Title:Microsoft Windows Server Message Block 安全漏洞 (CVE-2020-1301)
Description:A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

Description

POC exploit for SMBLost vulnerability (CVE-2020-1301)

Readme

# CVE-2020-1301
POC exploit for SMBLost vulnerability (CVE-2020-1301)

## Affected version
Refer here: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1301

## Steps to reproduce
* Make sure SMB/CIFF service feature is turned on target.
* SMB1 must be supported by target. Refer here: https://docs.microsoft.com/en-us/windows-server/storage/file-server/troubleshoot/detect-enable-and-disable-smbv1-v2-v3
* Target must have C:\ driver shared

## Running the exploit
`exploit.py -t <target> -u <username> -p <password>` 
<br/>
username and password are not required in case of target machine has no credentials set. 

## Outcome
Will cause BSOD (Blue screen of death)
<br/>
***Code execution comming soon.***

## Source and Credits
https://airbus-cyber-security.com/diving-into-the-smblost-vulnerability-cve-2020-1301/

## POC video
<a href="http://www.youtube.com/watch?feature=player_embedded&v=zVHsKPwtPo4" target="_blank"><img src="http://img.youtube.com/vi/zVHsKPwtPo4/0.jpg" 
alt="POC video" width="240" height="180" border="10" /></a>

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!