Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-13519 PoC — NZXT CAM 权限许可和访问控制问题漏洞

Source
https://github.com/SpiralBL0CK/poc-for-CVE-2020-13519-still-under-construction-
Associated Vulnerability
Title:NZXT CAM 权限许可和访问控制问题漏洞 (CVE-2020-13519)
Description:NZXT CAM是美国NZXT公司的一个应用于游戏计算机的性能监控软件。该软件可用于管理计算机性能、温度、设备,确保计算机处于最佳性能。 NZXT CAM 4.8.0 存在权限许可和访问控制问题漏洞,该漏洞源于WinRing0x64驱动程序IRP 0x9c402088功能,一个特别制作的I O请求包(IRP)可以增加特权。攻击者可利用该漏洞可以发送恶意IRP来触发此漏洞。
Description
poc for CVE-2020-13519(still under construction). needs refining , testing , tunning...
Readme
# poc-for-CVE-2020-13519-still-under-construction-
poc for CVE-2020-13519(still under construction). needs refining , testing , tunning...

Exploit(EOP) will be based on this cool blogpost. https://idafchev.github.io/blog/wrmsr/
File Snapshot

 [4.0K]  /data/pocs/d842378b1760b9f24a327d18b2b5b5121e47e014
├── [1.5K]  dos.c
└── [ 229]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.