Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-0213 PoC — Microsoft Windows COM 权限许可和访问控制问题漏洞

Source
https://github.com/shaheemirza/CVE-2017-0213-
Associated Vulnerability
Title:Microsoft Windows COM 权限许可和访问控制问题漏洞 (CVE-2017-0213)
Description:Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。Windows COM Aggregate Marshaler是其中的一个组件。 Microsoft Windows中的Windows COM Aggregate Marshaler存在提权漏洞。本地攻击者可通过运行特制的应用程序利用该漏洞在应用程序上下文中执行任意任意代码。以下版本受到影响:Microsoft Windows Server 2008 SP2和R2 SP1;Windows 7 SP1;Windows
Readme
# CVE-2017-0213
# to get privilege Administator from CMD

### Vulnerable

| Product             | Version | Update | Tested |
| :------------------ | :------ | :----- | :----- |
| Windows 10          |         |        | √      |
| Windows 10          | 1511    |        |        |
| Windows 10          | 1607    |        |        |
| Windows 10          | 1703    |        | √      |
| Windows 7           |         | SP1    | √      |
| Windows 8.1         |         |        |        |
| Windows RT 8.1      |         |        |        |
| Windows Server 2008 |         | SP2    |        |
| Windows Server 2008 | R2      | SP1    |        |
| Windows Server 2012 |         |        |        |
| Windows Server 2012 | R2      |        |        |
| Windows Server 2016 |         |        |        |

# 1

![1222222222222](https://user-images.githubusercontent.com/25440152/26889235-cd0fd188-4bad-11e7-93ae-78109cce187b.PNG)
# 2

![1222222222222222222](https://user-images.githubusercontent.com/25440152/26889237-ce670f06-4bad-11e7-9595-5a8e6e3d5bed.PNG)

# use Mimikatz CVE-2017-0213
# But do not use On cmd Administator 
# But On Prject Cmder !

# Download Cmder !
# http://cmder.net/
# After the download
# Turn on Cmder from CVE-2017-0213 And then run Mimikatz On  Cmder
# Some pictures  !

# 1
![2323](https://user-images.githubusercontent.com/25440152/26889465-917244b6-4bae-11e7-8ab0-f2e8742970f9.PNG)

# 2
![122222222222222222](https://user-images.githubusercontent.com/25440152/26889702-3f5b856a-4baf-11e7-9f29-71eda4b38c84.PNG)

# 3
![capture](https://user-images.githubusercontent.com/25440152/26889863-cd75c162-4baf-11e7-9708-cb370ae4b07a.PNG)

**Video:** [Youtube](https://www.youtube.com/watch?v=Y_lTfhhgppE&t=1s)
File Snapshot

 [4.0K]  /data/pocs/b175b0cd1e86562bb13ae205e31354826548fdf2
├── [157K]  CVE-2017-0213_x64.exe
├── [132K]  CVE-2017-0213_x86.exe
└── [1.7K]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.