CVE-2021-1675 PoC — Microsoft Windows Print Spooler Components 安全漏洞

Source

https://github.com/JumpsecLabs/PrintNightmare

Associated Vulnerability

Title:Microsoft Windows Print Spooler Components 安全漏洞 (CVE-2021-1675)
Description:Microsoft Windows Print Spooler Components是美国微软（Microsoft）公司的一个打印后台处理程序组件。 Microsoft Windows Print Spooler Components存在安全漏洞。以下产品和版本受到影响：Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for AR

Description

Information on the Windows Spooler vulnerability - CVE-2021-1675; CVE 2021 34527

Readme

# PrintNightmare

![image](https://user-images.githubusercontent.com/44196051/125207385-f42b3e80-e283-11eb-8495-3e72cda31a26.png)

## [Check if your post-Patch machine is still vulnerable](PrivEscTest.md)
Guidance on how to implement a non-malicious, 'defanged' version of the exploit.

## [Research piece that dissects captured network traffic of the PrintNightmare exploit](PrintNightmarePCAPAnalysis.md)
Analysis of a PCAP that contains malicious traffic from PrintNightmare

File Snapshot


 [4.0K]  /data/pocs/7604168dd59e17adccf07bc0e79339e9ad3414f6
├── [167K]  attacker_side.pcapng
├── [ 90K]  nightmare.dll
├── [ 32K]  PrintNightmarePCAPAnalysis.md
├── [3.9K]  PrivEscTest.md
└── [ 478]  README.md

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!