CVE-2023-28252 PoC — Microsoft Windows Common Log File System Driver 安全漏洞

Source

Associated Vulnerability

Description

The repo contains a precompiled binary which can be run on a Windows machine vulnerable to CVE-2023-28252

Readme

# Compiled PoC Binary For CVE-2023-28252
### The repo contains a precompiled binary which can be run on a Windows machine vulnerable to CVE-2023-28252

The precompiled binary is a slightly modified version of the PoC exploit seen in [fortra's repo](https://github.com/fortra/CVE-2023-28252).

The file can be run with the following arguments:
```powershell
clfs_eop.exe <PAYLOAD> <OFFSET,optional> <FLAG,optional>
```
`<PAYLOAD>` could be any payload you would like to run as nt system\authority if the exploit runs succesfully

`<OFFSET,optional>` has a default value of **1208**, see [fortra's repo](https://github.com/fortra/CVE-2023-28252) for an explanation how to find the right flag, if needed

`<FLAG,optional>` has a default value of **1**, see [fortra's repo](https://github.com/fortra/CVE-2023-28252) for an explanation how to find the right flag, if needed

File Snapshot

 [4.0K]  /data/pocs/b9cb94db387851380df255dae222ff4f92529cf6
├── [1.2K]  LICENSE
├── [ 869]  README.md
└── [4.0K]  x64
    └── [4.0K]  Release
        └── [343K]  clfs_eop.exe

2 directories, 3 files

Remarks