CVE-2021-31166 PoC — Microsoft HTTP.sys 资源管理错误漏洞

Source

https://github.com/imikoYa/CVE-2021-31166-exploit

Associated Vulnerability

Title:Microsoft HTTP.sys 资源管理错误漏洞 (CVE-2021-31166)
Description:Microsoft HTTP.sys是美国微软（Microsoft）公司的一个应用协议。HTTP应用协议。 HTTP.sys存在资源管理错误漏洞。以下产品和版本受到影响：Windows 10 Version 2004 for 32-bit Systems,Windows 10 Version 2004 for ARM64-based Systems,Windows 10 Version 2004 for x64-based Systems,Windows Server, version 2004 (Ser

Description

Just a simple CVE-2021-31166 exploit tool

Readme

CVE-2021-31166 (HTTP Protocol Stack Remote Code Execution Vulnerability)

Attacked version：
- Microsoft:Windows 10:
- version 2004 for 32-bit Systems
- version 2004 for x64-based Systems
- version 2004 for ARM64-based Systems
- version 20H2 for 32-bit Systems
- version 20H2 for x64-based Systems
- version 20H2 for ARM64-based Systems
- Microsoft:Windows Server:
- version 20H2
- version 2004

File Snapshot


 [4.0K]  /data/pocs/ff6d4ceeb23176f4a4d5e178f40555a7f2081f3e
└── [ 396]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!