POC详情: b9cb94db387851380df255dae222ff4f92529cf6

来源
https://github.com/bkstephen/Compiled-PoC-Binary-For-CVE-2023-28252
关联漏洞
标题: Microsoft Windows Common Log File System Driver 安全漏洞 (CVE-2023-28252)
描述:Microsoft Windows Common Log File System Driver是美国微软(Microsoft)公司的通用日志文件系统 (CLFS) API 提供了一个高性能、通用的日志文件子系统,专用客户端应用程序可以使用该子系统并且多个客户端可以共享以优化日志访问。 Microsoft Windows Common Log File System Driver存在安全漏洞。以下产品和版本受到影响:Windows 10 Version 20H2 for 32-bit Systems,Win
描述
The repo contains a precompiled binary which can be run on a Windows machine vulnerable to CVE-2023-28252
介绍
# Compiled PoC Binary For CVE-2023-28252
### The repo contains a precompiled binary which can be run on a Windows machine vulnerable to CVE-2023-28252

The precompiled binary is a slightly modified version of the PoC exploit seen in [fortra's repo](https://github.com/fortra/CVE-2023-28252).

The file can be run with the following arguments:
```powershell
clfs_eop.exe <PAYLOAD> <OFFSET,optional> <FLAG,optional>
```
`<PAYLOAD>` could be any payload you would like to run as nt system\authority if the exploit runs succesfully

`<OFFSET,optional>` has a default value of **1208**, see [fortra's repo](https://github.com/fortra/CVE-2023-28252) for an explanation how to find the right flag, if needed

`<FLAG,optional>` has a default value of **1**, see [fortra's repo](https://github.com/fortra/CVE-2023-28252) for an explanation how to find the right flag, if needed
文件快照

 [4.0K]  /data/pocs/b9cb94db387851380df255dae222ff4f92529cf6
├── [1.2K]  LICENSE
├── [ 869]  README.md
└── [4.0K]  x64
    └── [4.0K]  Release
        └── [343K]  clfs_eop.exe

2 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。