Bluekeep crashes target

[whydee86]

Hi, I am trying to exploit bluekeep on windows server 2008 r2, but every time I am running the exploit the victim machine crashes or gets BSOD. I used this guide https://klaus.hohenpoelz.de/playing-with-the-bluekeep-metasploit-module.html I installed windows server 2008 r2 on VirtualBox version 6 with the right build (7601) and with the same specifications (2ram). I used VirtualBox dump to dump the memory and then I used the rekall tool to find the nonpaged pool address. I edited the ruby file and entered the groombase accordingly. I set the target to VirtualBox 6 and after that, I set the groomsize to 50mb, it didn't work (the target went through a restart) so I played around with the groomsize but it still didn't work.

Have anyone managed to make it work? Thanks in advance.

[idiotc4t]

set 'forceexploit' option is true try it

[whydee86]

set 'forceexploit' option is true try it

I have already tried that and furthermore, I understand that 'forceexploit' is used to check if the target is vulnerable and run the exploit even if it's not so I don't see how it helps me.

[ccondon-r7]

It's a finnicky exploit. There's some general info here: https://blog.rapid7.com/2019/09/06/initial-metasploit-exploit-module-for-bluekeep-cve-2019-0708/. There are also a ton of user comments on the original PR thread, so take a look at what others have done.