CVE-2024-20656 PoC — Microsoft Visual Studio 安全漏洞

Source

https://github.com/Wh04m1001/CVE-2024-20656

Associated Vulnerability

Title:Microsoft Visual Studio 安全漏洞 (CVE-2024-20656)
Description:Microsoft Visual Studio是美国微软（Microsoft）公司的一款开发工具套件系列产品，也是一个基本完整的开发工具集，它包括了整个软件生命周期中所需要的大部分工具。 Microsoft Visual Studio存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响：Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 version 17

Readme

# CVE-2024-20656

PoC for EoP in VSStandardCollectorService150 service 

https://www.mdsec.co.uk/2024/01/cve-2024-20656-local-privilege-escalation-in-vsstandardcollectorservice150-service/

File Snapshot


 [4.0K]  /data/pocs/e984d6ca5adda4432c95c6918e739e8e1b24d284
├── [4.0K]  Expl
│   ├── [4.1K]  def.h
│   ├── [1.4K]  Expl.sln
│   ├── [6.7K]  Expl.vcxproj
│   ├── [1.3K]  Expl.vcxproj.filters
│   ├── [ 168]  Expl.vcxproj.user
│   ├── [4.3K]  FileOplock.cpp
│   ├── [ 986]  FileOplock.h
│   └── [ 15K]  main.cpp
└── [ 189]  README.md

1 directory, 9 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!