CVE-2021-34527 PoC — Microsoft Windows Print Spooler Components 安全漏洞

Source

https://github.com/hackerhouse-opensource/cve-2021-34527

Associated Vulnerability

Title:Microsoft Windows Print Spooler Components 安全漏洞 (CVE-2021-34527)
Description:Microsoft Windows Print Spooler Components是美国微软（Microsoft）公司的一个打印后台处理程序组件。 Microsoft Windows Print Spooler Components 存在安全漏洞，攻击者可以通过该漏洞绕过PfcAddPrinterDriver的安全验证，并在打印服务器中安装恶意的驱动程序。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1

Description

CVE-2021-34527 AddPrinterDriverEx() Privilege Escalation

Readme

# CVE-2021-34527

CVE-2021-34527 LPE exploit using AddPrinterDriverEx() - this is a weaponized version
of the LPE that can be used to escalate a DLL to SYSTEM and will also clean up artifacts.
The LPE impacts Windows Desktop 7,8,8.1,10,11 & Server 2008,2012,2016,2019.
This visual studio project will create statically compiled x86 and x64 binaries for testing purposes.

These files are available under a Attribution-NonCommercial-NoDerivatives 4.0 International license.

File Snapshot


 [4.0K]  /data/pocs/e6967fb0145dfd5c413072715e957b6507c9ed8c
├── [4.0K]  CVE-2021-34527
│   ├── [4.8K]  CVE-2021-34527.cpp
│   ├── [ 216]  CVE-2021-34527.h
│   ├── [1.6K]  CVE-2021-34527.rc
│   ├── [8.0K]  CVE-2021-34527.vcxproj
│   ├── [1.4K]  CVE-2021-34527.vcxproj.filters
│   ├── [4.0K]  res
│   │   ├── [136K]  Luna.ico
│   │   └── [354K]  Thumbs.db
│   └── [ 441]  resource.h
├── [1.4K]  CVE-2021-34527.sln
└── [ 473]  README.md

2 directories, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!