CVE-2020-1020 PoC — Microsoft Windows和Microsoft Windows Server 安全漏洞

Source

https://github.com/KaLendsi/CVE-2020-1020

Associated Vulnerability

Title:Microsoft Windows和Microsoft Windows Server 安全漏洞 (CVE-2020-1020)
Description:Microsoft Windows和Microsoft Windows Server都是美国微软（Microsoft）公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。 Microsoft Windows和Windows Server中存在安全漏洞，该漏洞源于Windows Adobe Type Manager Library没有正确处理MM字体（Type 1 PostScript字体的一种延展）。攻击者可利用

Description

Windows Font Driver Type 1 VToHOrigin stack corruption

Readme

# CVE-2020-1020
Windows Font Driver Type 1 VToHOrigin stack corruption

only works on win7 x64

File Snapshot


 [4.0K]  /data/pocs/d960bfabc47aa1a4bedbf9905699426665b975d7
├── [4.0K]  CVE-2020-1020-X64
│   ├── [ 14K]  CVE-2020-1020-X64.cpp
│   ├── [1.0K]  CVE-2020-1020-X64.filters
│   ├── [ 162]  CVE-2020-1020-X64.user
│   ├── [7.4K]  CVE-2020-1020-X64.vcxproj
│   ├── [ 274]  Syscall.asm
│   └── [4.0K]  x64
│       └── [4.0K]  Debug
│           └── [4.0K]  CVE-2020.62F4B894.tlog
│               └── [ 158]  CVE-2020-1020-X64.lastbuildstate
└── [  95]  README.md

4 directories, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!