CVE-2019-0708 PoC — Microsoft Remote Desktop Services 资源管理错误漏洞

Source

https://github.com/mekhalleh/cve-2019-0708

Associated Vulnerability

Title:Microsoft Remote Desktop Services 资源管理错误漏洞 (CVE-2019-0708)
Description:Microsoft Windows和Microsoft Windows Server都是美国微软（Microsoft）公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。Remote Desktop Services是其中的一个远程桌面服务组件。 Microsoft Remote Desktop Services中存在资源管理错误漏洞。该漏洞源于网络系统或产品对系统资源（如内存、磁盘空间、文件等）的管理不当。以下

Description

Metasploit module for massive Denial of Service using #Bluekeep vector.

Readme

# CVE-2019-0708

This module checks a range of hosts for the CVE-2019-0708 vulnerability by binding
the MS_T120 channel outside of its normal slot and sending DoS packets.

I just modified the initial metasploit module for this vuln to produce a denial of service attack.

![alt text][module_info]

![alt text][module_demo]

![alt text][module_crash]

[module_info]: https://raw.githubusercontent.com/mekhalleh/cve-2019-0708/master/pictures/demo-01.png "Module: info"
[module_demo]: https://raw.githubusercontent.com/mekhalleh/cve-2019-0708/master/pictures/demo-02.png "Module: demo"
[module_crash]: https://raw.githubusercontent.com/mekhalleh/cve-2019-0708/master/pictures/demo-03.png "Module: crash"

File Snapshot


 [4.0K]  /data/pocs/cd4a15e5dd5d74f9a010c34b3d44481537eb7756
├── [2.0K]  cve_2019_0708_bluekeep_dos.md
├── [4.4K]  cve_2019_0708_bluekeep_dos.rb
├── [4.0K]  pictures
│   ├── [309K]  demo-01.png
│   ├── [355K]  demo-02.png
│   └── [ 28K]  demo-03.png
└── [ 702]  README.md

1 directory, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!