Windows CVE-2022-21907复现
漏洞原理
此次CVE的漏洞是由于HTTP.sys的缓冲区溢出从而导致的拒绝服务,蓝屏重启。
测试环境:win10 20h2
Poc:https://github.com/p0dalirius/CVE-2022-21907-http.sys
影响范围
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for 32-bit Systems
Windows 11 for ARM64-based Systems
Windows 11 for x64-based Systems
Windows Server, version 20H2 (Server Core Installation)
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for x64-based Systems
Windows Server 2022 (Server Core installation)
Windows Server 2022
Windows 10 Version 21H1 for 32-bit Systems
Windows 10 Version 21H1 for ARM64-based Systems
Windows 10 Version 21H1 for x64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
漏洞复现
首先打开Windows自带的IIS WEB服务
访问靶机的ip地址,查看是否成功搭建IIS服务
利用poc
Python CVE-2022-21907.py -t 192.168.56.129
回显成功查看靶机已经蓝屏等待重启
版权归原作者 liarmo 所有, 如有侵权,请联系我们删除。