CVE-2023-50387 PoC — Microsoft DNS Server 安全漏洞

Source

https://github.com/Pablodiz/CVE-2023-50387

Associated Vulnerability

Title:Microsoft DNS Server 安全漏洞 (CVE-2023-50387)
Description:Microsoft DNS Server是美国微软（Microsoft）公司的一个服务。 Microsoft DNS Server存在安全漏洞。以下产品和版本受到影响：Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows Server 2022, 23H2 Edition (Se

Readme

Repositorio basado en https://github.com/knqyf263/CVE-2023-50387 en el que se hicieron varias modificaciones: 
- Añadido resolver-fixed, que tiene una implementación de Unbound en la que se arregla la vulnerabilidad de la que hablamos.
- Creados scripts para la automatización de generación de claves RRSIG.

File Snapshot


 [4.0K]  /data/pocs/11f97159eb49dadafccc69b4a7ae202d31826487
├── [4.0K]  attacker
│   └── [  55]  Dockerfile
├── [4.0K]  auth
│   ├── [1.4K]  añadir_claves.py
│   ├── [2.4K]  a.test.zone
│   ├── [ 85K]  a.test.zone.signed
│   ├── [1.8K]  Dockerfile
│   ├── [  93]  dsset-a.test.
│   ├── [ 372]  ksk.key
│   ├── [ 207]  ksk.private
│   ├── [  37]  named
│   ├── [ 820]  named.conf
│   ├── [2.8K]  rrsig.py
│   ├── [ 373]  zsk.key
│   └── [ 207]  zsk.private
├── [1003]  docker-compose.yml
├── [ 865]  generar.sh
├── [4.0K]  imgs
│   └── [ 40K]  network.png
├── [1.0K]  LICENSE
├── [ 313]  README.md
├── [4.0K]  resolver
│   ├── [ 372]  a.test.key
│   ├── [ 607]  Dockerfile
│   └── [ 478]  unbound.conf
└── [4.0K]  resolver-fixed
    ├── [ 372]  a.test.key
    ├── [ 607]  Dockerfile
    └── [ 478]  unbound.conf

5 directories, 24 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!