CVE-2023-21752漏洞(Windows)-电脑端工具社区-电脑端-X黑手网
X黑手网
点击查看-X黑手网
点击查看-X黑手网

CVE-2023-21752漏洞(Windows)

简介:

(包含POC下载链接)这个漏洞是针对windows的提权漏洞

由Windows的Windows Server Backup引起

漏洞利用难度极低

此漏洞需要攻击者赢得竞争条件(也就是先要入侵进去)

复现:

IMG_20230114_005514

主要影响以下版本

  • – Windows 7 for 32-bit Systems Service Pack 1
  • – Windows 10 for 32-bit Systems
  • – Windows 10 Version 1607 for x64-based Systems
  • – Windows 10 for x64-based Systems
  • – Windows 7 for x64-based Systems Service Pack 1
  • – Windows 10 Version 1809 for x64-based Systems
  • – Windows 10 Version 1607 for 32-bit Systems
  • – Windows 10 Version 1809 for ARM64-based Systems
  • – Windows 10 Version 1809 for 32-bit Systems
  • – Windows 10 Version 20H2 for ARM64-based Systems
  • – Windows 10 Version 20H2 for 32-bit Systems
  • – Windows 10 Version 20H2 for x64-based Systems
  • – Windows 11 Version 22H2 for x64-based Systems
  • – Windows 10 Version 21H2 for x64-based Systems
  • – Windows 10 Version 22H2 for x64-based Systems
  • – Windows 10 Version 21H2 for 32-bit Systems
  • – Windows 11 version 21H2 for ARM64-based Systems
  • – Windows 11 version 21H2 for x64-based Systems
  • – Windows 10 Version 21H2 for ARM64-based Systems
  • – Windows 10 Version 22H2 for 32-bit Systems
  • – Windows 11 Version 22H2 for ARM64-based Systems
  • – Windows 10 Version 22H2 for ARM64-based System

POC下载:

  • https://github.com/Wh04m1001/CVE-2023-21752

参考链接:

  • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752
  • https://cert.360.cn/warning/detail?id=a03d9f175f1fe37ffaf00519e080833c
请登录后发表评论

    没有回复内容