CVE-2019-0708 PoC — Microsoft Remote Desktop Services 资源管理错误漏洞

Source

https://github.com/skyshell20082008/CVE-2019-0708-PoC-Hitting-Path

Associated Vulnerability

Title:Microsoft Remote Desktop Services 资源管理错误漏洞 (CVE-2019-0708)
Description:Microsoft Windows和Microsoft Windows Server都是美国微软（Microsoft）公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。Remote Desktop Services是其中的一个远程桌面服务组件。 Microsoft Remote Desktop Services中存在资源管理错误漏洞。该漏洞源于网络系统或产品对系统资源（如内存、磁盘空间、文件等）的管理不当。以下

Description

It's only hitting vulnerable path in termdd.sys!!! NOT DOS

Readme

# CVE-2019-0708-PoC-Hitting-Path
# Really Really Bad, don't judge this code hahaha (it's terrible)
It's only hitting vulnerable path in termdd.sys!!! NOT DOS
Tested only on Windows XP Sp3 x86, Windows 7 will need negotiation part probably so it won't work (I hope that work at all)
Maybe it will be useful for exploit development
![](path.jpg)

File Snapshot


 [4.0K]  /data/pocs/6dcecd3208d54656191221b907ae30766fa64a07
├── [ 75K]  path.jpg
├── [ 12K]  PoC_Hitting_Vulnerable_Path.py
└── [ 345]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!