Exploit Windows Machine (MS-17-10)

Published by root on

Exploit Windows Machine

 

Shadow Brokers shocked the world once again leaked a confidential document, which contains a number of beautifully Windows remote exploits that can cover a large number of Windows servers, Windows servers almost all across the board overnight exposure to risk.

What is MS-17-10?

Remote code execution vulnerabilities exist in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests. An attacker who successfully exploited the vulnerabilities could gain the ability to execute code on the target server.

To exploit the vulnerability, in most situations, an unauthenticated attacker could send a specially crafted packet to a targeted SMBv1 server.

Update 4/28/2017

 Security researcher created metasploit module for exploiting ms-17-10.

Download

Loading

Categories: Tricks
Tags:

Related Posts

Tricks

How to bypass UAC in newer Windows Versions

What is UAC? UAC (User Account Control) is a security feature, introduced from Windows 7 and onward versions of Windows. This prevents that even a local administrator account can’t execute changes to operating system, unless Read more…

Tricks

Evil Clippy v1.1 Releases

Evil Clippy v1.1 releases: hide VBA macros, stomp VBA code and confuse macro analysis tools Evil Clippy A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and Read more…

Tools Tricks

XSS Chef: generating custom XSS payloads

What is XSS Chef? XSS Chef is a small React.js application inspired by CyberChef, which provides users with a modular way to build JavaScript payloads to typically be used during penetration tests to demonstrate cross-site scripting vulnerabilities. A Read more…