CVE-2018-0824 PoC — Microsoft COM for Windows 安全漏洞

Source

https://github.com/codewhitesec/UnmarshalPwn

Associated Vulnerability

Title:Microsoft COM for Windows 安全漏洞 (CVE-2018-0824)
Description:Microsoft COM for Windows中存在远程代码执行漏洞，该漏洞源于程序没有正确的处理序列化对象。远程攻击者可利用该漏洞在受影响系统的上下文中执行任意代码或造成拒绝服务。以下系统版本受到影响：Microsoft Windows 10，Windows 10版本1607，Windows 10版本1703，Windows 10版本1709，Windows 10版本1803，Windows 7 SP1，Windows 8.1，Windows RT 8.1，Windows Server 2008 S

Description

POC for CVE-2018-0824

Readme

# UnmarshalPwn
POC for CVE-2018-0824

For details see https://codewhitesec.blogspot.com/2018/06/cve-2018-0624.html

File Snapshot


 [4.0K]  /data/pocs/9deabce8cd2ccdd5e8a3bcc9af0fee12c8be5cf2
├── [ 739]  DISCLAIMER.md
├── [ 116]  README.md
└── [4.0K]  UnmarshalPwn
    ├── [4.0K]  UnmarshalPwn
    │   ├── [ 600]  stdafx.cpp
    │   ├── [ 642]  stdafx.h
    │   ├── [ 630]  targetver.h
    │   ├── [ 22K]  UnmarshalPwn.cpp
    │   ├── [7.9K]  UnmarshalPwn.vcxproj
    │   └── [1.2K]  UnmarshalPwn.vcxproj.filters
    └── [1.4K]  UnmarshalPwn.sln

2 directories, 9 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!