Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-3103 PoC — Microsoft Windows Vista和Windows 7畸形SMB报文远程拒绝服务漏洞

Source
https://github.com/sooklalad/ms09050
Associated Vulnerability
Title:Microsoft Windows Vista和Windows 7畸形SMB报文远程拒绝服务漏洞 (CVE-2009-3103)
Description:Windows是微软发布的非常流行的操作系统。 Windows Vista捆绑了新版的SMB2,SRV2.SYS驱动没有正确地处理发送给NEGOTIATE PROTOCOL REQUEST功能的畸形SMB头,如果远程攻击者在发送的SMB报文的Process Id High头字段中包含有"&"字符的话,就会在_Smb2ValidateProviderCallback()函数中触发越界内存引用,导致执行任意代码或系统蓝屏死机。
Description
cve-2009-3103
File Snapshot

 [4.0K]  /data/pocs/54108b8dbaa814ef1c0f97f8ac4934d33556cd23
└── [4.0K]  09050
    └── [4.0K]  09050
        ├── [ 52K]  09050.cpp
        ├── [ 110]  ReadMe.txt
        ├── [2.9K]  smb.h
        ├── [ 310]  stdafx.cpp
        ├── [ 364]  stdafx.h
        └── [ 366]  targetver.h

2 directories, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.