Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-21551 PoC — Dell dbutil Driver 安全漏洞

Source
https://github.com/ihack4falafel/Dell-Driver-EoP-CVE-2021-21551
Associated Vulnerability
Title:Dell dbutil Driver 安全漏洞 (CVE-2021-21551)
Description:Dell dbutil Driver是美国戴尔(Dell)公司的一个应用软件。提供了戴尔公司设备的一个驱动程序。 Dell dbutil Driver 存在安全漏洞,该漏洞源于戴尔dbutil驱动程序dbutil 2 .sys中不正确的访问限制。以下产品及版本受到影响:DBUtil: 2.3 。
Description
Dell Driver EoP (CVE-2021-21551)
Readme
# Dell Driver EoP (CVE-2021-21551)
Made quick exploit for Dell driver bug (CVE-2021-21551) for fun. Great find by [@kasifdekel](https://twitter.com/kasifdekel?lang=en)! Writeup can be found [here](https://labs.sentinelone.com/cve-2021-21551-hundreds-of-millions-of-dell-computers-at-risk-due-to-multiple-bios-driver-privilege-escalation-flaws/). This exploit has been tested on Windows versions 1809 and 20H2, token offsets may vary on other versions.

<p align="center">
  <img  src="https://github.com/ihack4falafel/Dell-Driver-EoP-CVE-2021-21551/blob/main/Dell_EoP.gif">
</p>
File Snapshot

 [4.0K]  /data/pocs/5ff35d936a0230b30cb05ab98a23dd4822e089b7
├── [4.0K]  Dell_EoP
│   ├── [7.5K]  Dell_EoP.c
│   ├── [1.4K]  Dell_EoP.sln
│   ├── [6.9K]  Dell_EoP.vcxproj
│   ├── [1.0K]  Dell_EoP.vcxproj.filters
│   ├── [ 165]  Dell_EoP.vcxproj.user
│   ├── [3.7K]  Header.h
│   └── [4.0K]  x64
│       ├── [4.0K]  Debug
│       │   ├── [ 836]  Dell_EoP.Build.CppClean.log
│       │   ├── [ 65K]  Dell_EoP.exe
│       │   ├── [ 293]  Dell_EoP.exe.recipe
│       │   ├── [473K]  Dell_EoP.ilk
│       │   ├── [ 746]  Dell_EoP.log
│       │   ├── [ 35K]  Dell_EoP.obj
│       │   ├── [540K]  Dell_EoP.pdb
│       │   ├── [4.0K]  Dell_EoP.tlog
│       │   │   ├── [ 692]  CL.command.1.tlog
│       │   │   ├── [ 26K]  CL.read.1.tlog
│       │   │   ├── [ 464]  CL.write.1.tlog
│       │   │   ├── [ 165]  Dell_EoP.lastbuildstate
│       │   │   ├── [1.2K]  link.command.1.tlog
│       │   │   ├── [3.0K]  link.read.1.tlog
│       │   │   └── [ 500]  link.write.1.tlog
│       │   ├── [ 122]  Dell_EoP.vcxproj.FileListAbsolute.txt
│       │   ├── [251K]  vc142.idb
│       │   └── [108K]  vc142.pdb
│       └── [4.0K]  Release
│           ├── [ 952]  Dell_EoP.Build.CppClean.log
│           ├── [ 14K]  Dell_EoP.exe
│           ├── [ 295]  Dell_EoP.exe.recipe
│           ├── [ 42K]  Dell_EoP.iobj
│           ├── [ 16K]  Dell_EoP.ipdb
│           ├── [1.0K]  Dell_EoP.log
│           ├── [158K]  Dell_EoP.obj
│           ├── [444K]  Dell_EoP.pdb
│           ├── [4.0K]  Dell_EoP.tlog
│           │   ├── [ 700]  CL.command.1.tlog
│           │   ├── [ 26K]  CL.read.1.tlog
│           │   ├── [ 354]  CL.write.1.tlog
│           │   ├── [ 167]  Dell_EoP.lastbuildstate
│           │   ├── [ 376]  Dell_EoP.write.1u.tlog
│           │   ├── [1.3K]  link.command.1.tlog
│           │   ├── [3.9K]  link.read.1.tlog
│           │   └── [ 388]  link.write.1.tlog
│           ├── [  63]  Dell_EoP.vcxproj.FileListAbsolute.txt
│           └── [ 84K]  vc142.pdb
├── [1.8M]  Dell_EoP.gif
└── [ 579]  README.md

6 directories, 43 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.