CVE-2020-1020 PoC — Microsoft Windows和Microsoft Windows Server 安全漏洞

Source

https://github.com/CrackerCat/CVE-2020-1020-Exploit

Associated Vulnerability

Title:Microsoft Windows和Microsoft Windows Server 安全漏洞 (CVE-2020-1020)
Description:Microsoft Windows和Microsoft Windows Server都是美国微软（Microsoft）公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。 Microsoft Windows和Windows Server中存在安全漏洞，该漏洞源于Windows Adobe Type Manager Library没有正确处理MM字体（Type 1 PostScript字体的一种延展）。攻击者可利用

Readme

# CVE-2020-1020 Type1 Font Pool Overflow LPE Exploit
# Supported OS : Windows 7,8,8.1 x64

File Snapshot


 [4.0K]  /data/pocs/137644590bf98bfaaa8cb1365fdb2f06737c6e7d
├── [4.0K]  FontType1_Exploit
│   ├── [4.0K]  bin
│   │   └── [ 20K]  Exploit.exe
│   └── [4.0K]  src
│       ├── [ 726]  def.h
│       ├── [7.4K]  Exploit.vcxproj
│       ├── [1.4K]  Exploit.vcxproj.filters
│       ├── [ 168]  Exploit.vcxproj.user
│       ├── [ 12K]  main.cpp
│       ├── [ 20K]  payload.cpp
│       ├── [4.0K]  shellcode.asm
│       ├── [ 124]  shellcode.bin
│       └── [ 290]  Syscall.asm
└── [  90]  README.md

3 directories, 11 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!