CVE-2020-0796远程代码执行复现
影响范围
Windows 10 Version 1903 for 32-bit Systems
Windows 10 Version 1903 for x64-based Systems
Windows 10 Version 1903 for ARM64-based Systems
Windows Server, Version 1903 (Server Core installation)
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows Server, Version 1909 (Server Core installation)
复现环境
有漏洞的win10靶机
使用工具进行探测(http://dl.qianxin.com/skylar6/CVE-2020-0796-Scanner.zip )有漏洞
本文使用poc(https://github.com/chompie1337/SMBGhost_RCE_PoC)
利用msf生成shellcode替换poc中的
msfvenom -p