Metasploit release of high-risk vulnerabilities BlueKeep use the library, China 700 000 equipment to be careful - Code World

Metasploit release of high-risk vulnerabilities BlueKeep use the library, China 700 000 equipment to be careful

News 2019-09-07 11:20:10 views: null

Well-known penetration testing framework Metasploit exploit module has been added for a high-risk vulnerability BlueKeep in its arsenal.

BlueKeep number CVE-2019-0708, which is high-risk vulnerabilities were discovered in May this year , the vulnerability is a worm, you can use Windows Remote Desktop Services (RDS) to spread malicious programs, similar to the way in 2017 with the eternal blue and wreak havoc the WannaCry ransomware. An attacker could exploit this vulnerability to execute arbitrary code, and send a special request by the Remote Desktop Protocol (the RDP), to the control computer without the need for user interaction.

Before the existence BlueKeep reports that nearly 1 million high-risk vulnerabilities security risk devices, and now according to the scanning BinaryEdge, there are still risks 700 000 equipment , and most of them come from China!

This is a very terrible vulnerability, security personnel the industry had only released a few simple PoC (proof of concept) script, but they are not mature enough, on the other side we are also afraid of the terrible consequences caused as the year WannaCry attack, so even though it was We have developed a BlueKeep exploits, but refused to release the code.

Now the strongest penetration testing framework Metasploit released its BlueKeep exploit code, use the code module that is, ordinary people can also be done using the BlueKeep attack vulnerability.

Metasploit module and dozens of BlueKeep BlueKeep PoC previously circulated different, this Metasploit module can achieve code execution. But it is not so easy to use, because currently only supports user interaction in order to perform correctly, users need to enter such attacks environment, set parameters and other operations.

Currently BlueKeep Metasploit module applies only to 64-bit Windows 7 and Windows 2008 R2, the limited scope of use. The next developer's improvement plan include:

检测更多操作系统细节，获取内存泄漏以确定 Windows NPP 起始地址
编写 XP/2003 部分以处理 MS_T120 问题
添加检测 RDPSND 基于通道的处理是否有效
处理除 RDPSND/MS_T120 之外的通道

详情查看 Metasploit 说明：

https://github.com/rapid7/metasploit-framework/pull/12283

Guess you like

Origin www.oschina.net/news/109668/metasploit-releases-bluekeep-exploit

Metasploit release of high-risk vulnerabilities BlueKeep use the library, China 700 000 equipment to be careful

High-risk vulnerabilities BlueKeep risks nearly a million units Windows Device

Metasploit релиз уязвимостей высокого риска BlueKeep использовать библиотеку, Китай 700 000 оборудования, чтобы быть осторожными

Tomcat burst of high-risk vulnerabilities and repair

high-risk vulnerabilities windows system over the years

NagiosXI multiple high-risk vulnerabilities and repair solutions

Detailed explanation of the latest high-risk vulnerabilities in Struts2

Metasploit attack module for public release BlueKeep vulnerability (CVE-2019-0708)

[High Risk] Multiple high-risk vulnerabilities exist in UFIDA U8 Cloud, GRP-U8, and A++V8.31

Microsoft warns of a million computer still does not fix a high-risk vulnerabilities

Microsoft Windows 10 emergency repair two high-risk vulnerabilities, recommends updating

Many a high-risk vulnerabilities of information systems Shenzhen - within the network penetration

[Security Information] Microsoft Security Center Announcement: Dotnet explodes high-risk remote execution vulnerabilities

There are hundreds of high-risk vulnerabilities in popular software? Open source security issues cannot be ignored

Sysdig2023 Cloud Native Security and Usage Report: 87% of container images have high-risk vulnerabilities

Quick check! Cisco SDS-WAN management exposed high-risk vulnerabilities

Douxiang Technology-Compulsory high-risk vulnerabilities collection download for 2023 offensive and defensive drills (2 versions)

Qusu Future Release: Defeated, attackers exploit vulnerabilities in Citrix NetScaler equipment to amplify DDoS attacks

Douxiang Technology-2023 offensive and defensive drill compulsory high-risk vulnerabilities collection Baidu network disk download (2 versions)

Event Registration｜How to use a budget of 700,000 to train a 100 billion language model from scratch

[Security News of the Week 1007] Multiple national information security standards will be implemented on October 1; GitLab releases emergency security patches to fix high-risk vulnerabilities

Why the sudden server replies safety equipment RST-- careful network

Hackers use more than 400,000 units of Things equipment for cyber attacks

Use python ctypes library of dynamic memory application and release

Metasploit windows install and use

metasploit learn and use

Use PostgreSQL in the Metasploit

metasploit learn and use

Metasploit basics and the use of commands

Use of Metasploit - payloads

Recommended

微软回应中国区AI团队“打包赴美”传闻

Ranking

How to use ChatGPT to write 100,000+ hot articles for public accounts (includes prompt words)

sudo echo command execution Permission denied

ADO: Using Transactions to Operate Oracle Database

[Java] [Class and Object] equals, hashCode, clone methods

Linux virtual host function

Порт управления rabbitmq открыт

on,where

jQuery WeUI

How can there be a weed pilot in Hangzhou?

tcp / ip model four

Daily

More

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)