New | CVE-2024-26229 Windows 提权漏洞（附EXP）

TtTeam EchoSec 2024-06-24 22:41

文章来源：TtTeam

Windows CSC服务特权提升漏洞。

当程序向缓冲区写入的数据超出其处理能力时，就会发生基于堆的缓冲区溢出，从而导致多余的数据溢出到相邻的内存区域。这种溢出会损坏内存，并可能使攻击者能够执行任意代码或未经授权访问系统。本质上，攻击者可以编写触发溢出的恶意代码或输入，从而控制受影响的系统、执行任意命令、安装恶意软件或访问敏感数据。

受影响系统

Windows Server 2022, 23H2 Edition (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 for 32-bit Systems
Windows 11 Version 23H2 for x64-based Systems
Windows 11 Version 23H2 for ARM64-based Systems
Windows 10 Version 22H2 for 32-bit Systems
Windows 10 Version 22H2 for ARM64-based Systems
Windows 10 Version 22H2 for x64-based Systems
Windows 11 Version 22H2 for x64-based Systems
Windows 11 Version 22H2 for ARM64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for 32-bit Systems
Windows 11 version 21H2 for ARM64-based Systems
Windows 11 version 21H2 for x64-based Systems
Windows Server 2012 R2 (Server Core installation)
Windows Server 2022 (Server Core installation)
Windows Server 2022
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems

该漏洞于2024年4月9日修复，
详情请参阅
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26229 。

https://github.com/NVISOsecurity/CVE-2024-26229-BOF

HVV内推通道↓↓↓
1.
1. 高薪招聘 | 诚招Hvv“攻防演练”工程师！

2. 扫码或者点击下方链接报名投递简历即可

3. 

4. 记得备注【EchoSec】优先直推面试哦~

5. http://gywa.com.cn/cTiWka

6. 后台回复关键字【
   内推面试
   】也可投递~

8. 祝师傅们面试顺利！！GoodLucky！！

往期回顾

1111
1. ☆
☆
☆
☆
☆

| CVE-2023-33246 RCE漏洞（附EXP）

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| 横向移动与域控权限维持方法总汇

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| Apache HTTPd最新RCE漏洞复现

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| CNVD-2023-34111 RCE漏洞（附EXP）

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| Cobalt Strike免杀脚本生成器|cna脚本|bypassAV

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| MySQL数据库利用姿势

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| phpMyAdmin漏洞利用汇总

1. 
   ☆
   ☆
   ☆
   ☆
   ☆
    | 泛微E-Mobile任意文件上传漏洞（附EXP）

2. 
   ☆
   ☆
   ☆
   ☆
   ☆

| 小技巧~用一条命令来隐藏反向Shell

1. 
   ☆
   ☆
   ☆
   ☆
   ☆

| New免杀ShellCode加载器（附下载）

1. ☆
   ☆
   ☆
   ☆
   ☆

| 红队攻防 | 解决HW被疯狂封IP姿势～（附下载）

3. 

关注我

获得更多精彩

2. 觉得内容不错，就点下“赞”和“在看”如侵权请私聊公众号删文

1.