CVE-2020-0802 PoC — Microsoft Windows Network Connections Service 安全漏洞

Source

https://github.com/5l1v3r1/cve-2020-0802

Associated Vulnerability

Title:Microsoft Windows Network Connections Service 安全漏洞 (CVE-2020-0802)
Description:Microsoft Windows和Microsoft Windows Server都是美国微软（Microsoft）公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。Windows Network Connections Service是其中的一个网络连接服务组件。 Microsoft Windows Network Connections Service中处理内存对象的方式存在提权漏洞。攻击者可借通过执行特

Readme

# CVE-2020-0796

This tool allows to identify Windows machines that MAY be vulnerable to CVE-2020-0796. It checks for SMB 3.1.1 support and looks for the SMB2_COMPRESSION_CAPABILITY.

It does NOT attempt to exploit the vulnerability.


## Usage
```
python cve_2020_0796_check.py --target-ip 192.0.2.1
````

## Microsoft security advisory and cumulative patches
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200005

## Preventing SMB traffic from lateral connections and entering or leaving the network
https://support.microsoft.com/en-us/help/3185535/preventing-smb-traffic-from-lateral-connections

File Snapshot


 [4.0K]  /data/pocs/c6659a9e416f554a21a433ccfe014ead9ddb2771
├── [5.2K]  cve_2020_0796_check.py
├── [1.0K]  LICENSE
└── [ 623]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!