CVE-2019-1181
Date
2019.8 类型 影响范围
CVE-2019-0708
Date
2019.5 类型
远程代码执行 影响范围
复现
POC
0708detector.exe -t 192.168.91.138(要测试的目标IP) -p 3389
EXP
EXP目前仅支持 WIN7 SP1 和 Windows Server 2008 R2
分析 问题记录
(1)已开启远程保护
我的电脑”→“属性”→“远程设置”→“远程”,启用网路级认证(NLA)
(2)
CVE-2018-8420(RCE)
受影响版本:
Microsoft Windows 10 Version 1607 for 32-bit Systems
Microsoft Windows 10 Version 1607 for x64-based Systems
Microsoft Windows 10 Version 1803 for 32-bit Systems
Microsoft Windows 10 Version 1803 for x64-based Systems
Microsoft Windows 10 for 32-bit Systems
Microsoft Windows 10 for x64-based Systems
Microsoft Windows 10 version 1703 for 32-bit Systems
Microsoft Windows 10 version 1703 for x64-based Systems
Microsoft Windows 10 version 1709 for 32-bit Systems
Microsoft Windows 10 version 1709 for x64-based Systems
Microsoft Windows 7 for 32-bit Systems SP1
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows 8.1 for 32-bit Systems
Microsoft Windows 8.1 for 64-bit Systems
Microsoft Windows RT 8.1
Microsoft Windows Server 1709
Microsoft Windows Server 1803
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
win10和windows server 2016(2018-08-27 漏洞详情公开披露,2018-08-29 360CERT发布漏洞预警)
Task Scheduler任务调度服务中ALPC调用接口导出了SchRpcSetSecurity函数,该函数能够对一个任务或者文件夹设置安全描述符
Windows VBScript Engine (RCE) CVE-2018-8174
https://github.com/Sch01ar/CVE-2018-8174_EXP