NOMISEC-monjheta/CVE-2020-0796

NOMISEC WORKING POC

Exploit for CVE-2020-0796 - Microsoft Windows 10 1903 - Memory Corruption

AI Analysis

This is a functional PoC for CVE-2020-0796 (SMBGhost), a remote code execution vulnerability in Windows 10 SMBv3. It exploits a buffer overflow to achieve a reverse shell with SYSTEM privileges, leveraging SMBleed (CVE-2020-1206) for memory read primitives.

Attack Type

RCE

Complexity

complex

Reliability

racy

MITRE ATT&CK

T1189 - Drive-by Compromise T1068 - Exploitation for Privilege Escalation

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 14

https://github.com/monjheta/CVE-2020-0796

Stars 0

Forks 0

Last Push Feb 26, 2025

Authors

monjheta ZecOps, Inc.

Vulnerability

CVE-2020-0796

Microsoft Windows 10 1903 - Memory Corruption

CRITICAL KEV

CVSS 10.0