CVE-2022-21907 PoC — Microsoft Windows 安全漏洞

Source

https://github.com/iveresk/cve-2022-21907-http.sys

Associated Vulnerability

Title:Microsoft Windows 安全漏洞 (CVE-2022-21907)
Description:Microsoft Windows是美国微软（Microsoft）公司的一套个人设备使用的操作系统。 Microsoft Windows HTTP Protocol Stack存在安全漏洞。以下产品和版本受到影响：Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for ARM64-based Systems,Windows Ser

Description

An unauthenticated attacker can send an HTTP request with an "Accept-Encoding" HTTP request header triggering a double free in the unknown coding-list inside the HTTP Protocol Stack (http.sys) to process packets, resulting in a kernel crash.

Readme

# cve-2022-21907-http.sys by 1vere$k
CVE-2022-21907 - Double Free in http.sys driver.  

## Summary
An unauthenticated attacker can send an HTTP request with an "Accept-Encoding" HTTP request header triggering a double free in the unknown coding-list inside the HTTP Protocol Stack (http.sys) to process packets, resulting in a kernel crash.

## Vulnerable systems

Windows Server 2019 and Windows 10 version 1809:
- Not vulnerable by default. Unless you have set the HTTP Trailer Support.
- Windows 10 version 2004 (build 19041.450): **Vulnerable**

## Contact
You are free to contact me via [Keybase](https://keybase.io/1veresk) for any details.

File Snapshot


 [4.0K]  /data/pocs/1a73b00a93441563debb0741cb72e33f7dcca0b4
├── [3.3K]  cve-2022-21907-1veresk.sh
├── [ 288]  input.txt
├── [1.0K]  LICENSE
├── [ 648]  README.md
└── [ 468]  shodan-grep.sh

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!