n1xbyte / CVE-2019-0708

dump

491 stars 178 forks source link

MS12-020 #8

Closed blockchainguard closed 5 years ago

blockchainguard commented 5 years ago

patched windows server 2008 r2 kbKB2667402 then run crashexploit.py

the host is ok so this fake poc!!! is NOT CVE-2019-0708 POC

blockchainguard commented 5 years ago

attack patched host whit windows server 2008 r2

python crashpoc.py 10.10.X.X 64 File "crashpoc.py", line 194, in main(sys.argv) File "crashpoc.py", line 158, in main tls = send_init_packets(args[1]) File "crashpoc.py", line 71, in send_init_packets tls.do_handshake() OpenSSL.SSL.SysCallError: (104, 'Connection reset by peer')

n1xbyte commented 5 years ago

The error clearly says the tls handshake failed. The code forces a tlsv1 handshake. If that doesn’t work for you then change the code to a suitable protocol

blockchainguard commented 5 years ago

patched thank you