Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-24702 PoC — WinAPRS 安全漏洞

Source
https://github.com/Coalfire-Research/WinAPRS-Exploits
Associated Vulnerability
Title:WinAPRS 安全漏洞 (CVE-2022-24702)
Description:WinAPRS是一个多方面的系统,用于 Hams 的分组无线电,它允许监控实时地理信息,例如车辆位置、天气状态、无线电测向等等。它涉及地图、GPS 跟踪、分组无线电等。 WinAPRS 2.9.0版本存在安全漏洞,该漏洞源于VHF KISS TNC 组件中存在缓冲区溢出漏洞。远程攻击者利用该漏洞通过 AX.25 数据包实现远程代码执行。
Description
A collection of exploits, shellcode, and tools related to CVE-2022-24702
File Snapshot

 [4.0K]  /data/pocs/bc0283a77ac9ca24cb497ac1f5bb869b8ccd8375
├── [6.9K]  LICENSE
├── [4.0K]  Windows 10
│   ├── [1.9K]  heap_spray_large.py
│   ├── [1.3K]  heap_spray.py
│   ├── [ 16K]  stage1-shellcode.py
│   ├── [7.6K]  stage2-shellcode.py
│   ├── [ 20K]  stage3-shellcode.py
│   └── [ 10K]  winaprs_exploit_win10.py
└── [4.0K]  Windows XP SP3
    ├── [7.6K]  revShellTestXp.cpp
    ├── [ 16K]  shellcode-stage1.py
    ├── [7.6K]  shellcode-stage2.py
    ├── [ 23K]  shellcode-stage3.py
    ├── [ 50K]  winaprs_exploit_combined.py
    └── [ 11K]  winaprs_exploit.py

2 directories, 13 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.