IIS remote code execution vulnerability, CVE-2 0 1 5-1 6 3 5-the vulnerability warning-the black bar safety net

2015-04-16T00:00:00
ID MYHACK58:62201561234
Type myhack58
Reporter 佚名
Modified 2015-04-16T00:00:00

Description

In Microsoft 4 on 1 4, patch released the patch, there is one for the IIS server remote code execution vulnerability hazard is very large, please the majority of users attention.

Vulnerability information

A remote code execution vulnerability exists in the HTTP Protocol stack (HTTP.sys), when the HTTP.sys not correct parsing specially crafted HTTP request to cause this vulnerability. Successful exploitation of this vulnerability an attacker can be in the system account context in the execution of arbitrary code.

To exploit this vulnerability, an attacker must be specially crafted HTTP requests sent to an affected system. By modifying the Windows HTTP stack handles requests to install the update can fix this vulnerability.

Hazard rating

Serious

The scope of the impact

Affects the following version of theoperating systemof the IIS server

Windows 7

Windows 8

Windows server 2 0 0 8

Windows server 2 0 1 2

Repair method

Currently Microsoft's official has been given a repair patch for 3 0 4 2 5 5 3, users install the repair patch.

Reference

<https://technet.microsoft.com/zh-CN/library/security/ms15-034.aspx>

<https://support.microsoft.com/zh-cn/kb/3042553>

Attached test the POC

Note: This script can be the authentication server whether there is a vulnerability, but has not been fully tested, does not exclude will produce unpredictable consequences, be careful to use!

import socket

[1] [2] [3] [4] [5] [6] [7] [8] [9] [1 0] [1 1] [1 2] [[1 3]] (<61234_13.htm>) [1 4] [1 5] next