CVE-2022-36271 PoC — Outbyte PC Repair 代码问题漏洞

Source

https://github.com/SaumyajeetDas/POC-of-CVE-2022-36271

Associated Vulnerability

Title:Outbyte PC Repair 代码问题漏洞 (CVE-2022-36271)
Description:Outbyte PC Repair是Outbyte公司的一款全面的计算机修复工具。旨在解决一系列不同的系统问题、清理驱动器、优化性能并提高您的隐私和安全性。 Outbyte PC Repair Installation File 1.7.112.7856版本存在安全漏洞，该漏洞源于其丢失了Iertutil.dll导致攻击者可以使用相同名称的恶意DLL获得管理权限。

Description

This is working POC of CVE-2022-36271

Readme

# POC-of-CVE-2022-36271
 ![cve1](https://user-images.githubusercontent.com/66937297/187968056-dae28ecc-29a8-4f96-9681-be7c647a2202.png)

 
 The name of an affected Product : Outbyte PC Repair Installation File
 
 The affected version : 1.7.112.7856
 
 The CVE ID for the entry : CVE-2022-36271
 
 Description:  iertutil.dll is missing so an attacker can use a malicious dll with same name and can get a admin privileges and also perform a way of persistence on the victim machine.
 
 Vulnerability Type: DLL Hijacking
 
This is working POC of CVE-2022-36271 
![CVE-2022-36271 ](https://user-images.githubusercontent.com/66937297/184972630-5c831ba9-6474-4897-a935-aa841c73abb0.gif)

File Snapshot


 [4.0K]  /data/pocs/bc90328a344d8a427a29f19db62d8808ce41033c
├── [6.1M]  CVE-2022-36271 .mkv
├── [ 78K]  iertutilTEMP.dll
├── [ 22M]  outbyte-pc-repair.exe
└── [ 682]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!