Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2022-34718 PoC — Windows TCP/IP Remote Code Execution Vulnerability

Source
https://github.com/SecLabResearchBV/CVE-2022-34718-PoC
Associated Vulnerability
Title:Windows TCP/IP Remote Code Execution Vulnerability (CVE-2022-34718)
Description:Windows TCP/IP Remote Code Execution Vulnerability
Readme
# CVE-2022-34718 IPv6 Remote Code Execution exploit sample

This repository contains an exploit of CVE-2022-34718, a Remote Code Execution
(RCE) vulnerability in IPv6 on Windows systems.

## How to

Since the vulnerability requires specially crafted IPv6 packets, it depends on
the Scapy module and therefore needs to run as root. The recommended method to
run this PoC is through a virtual environment, like so:

```
# virtualenv PoC
# source PoC/bin/activate
(PoC) # pip3 install -r requirements.txt
(PoC) # python3 ipv6-rce-poc.py <target address>
```

The script will tell you if the target system is vulnerable to this exploit.

```
[...]
**** inner_frag_id: 0x24944eac
Preparing frags...
Sending 64 frags...
.
Sent 1 packets.
[...]
Sent 1 packets.
Now sending the last inner fragment to trigger the bug...
.
Sent 1 packets.
Success! The system is vulnerable...
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →