Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-1635 PoC — Microsoft Windows HTTP.sys 远程执行代码漏洞

Source
https://github.com/Zx7ffa4512-Python/Project-CVE-2015-1635
Associated Vulnerability
Title:Microsoft Windows HTTP.sys 远程执行代码漏洞 (CVE-2015-1635)
Description:HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability."
Description
CVE-2015-1635,MS15-034
Readme
# CVE-2015-1635
CVE-2015-1635,MS15-034


###漏洞检测
    USAGE python MS15-034.py www.xxx.com:80
[测试程序](https://github.com/Zx7ffa4512-Python/CVE-2015-1635/blob/master/MS15-034.py)

###HTTP.sys远程执行代码漏洞(CVE-2015-1635,MS15-034)

远程执行代码漏洞存在于 HTTP 协议堆栈 (HTTP.sys) 中,当 HTTP.sys 未正确分析经特殊设计的 HTTP 请求时会导致此漏洞。成功利用此漏洞的攻击者可以在系统帐户的上下文中执行任意代码。
File Snapshot

 [4.0K]  /data/pocs/fb43bc78cc46b1690c0d4f049348bf658b396beb
├── [1.4K]  MS15-034.py
└── [ 505]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →