CVE-2009-3103

This exploit targets a function table dereference vulnerability in Microsoft SRV2.SYS SMB Negotiate ProcessID, allowing remote code execution on vulnerable Windows systems. It leverages a crafted SMB packet to trigger the vulnerability and execute shellcode.

This exploit triggers a denial-of-service (DoS) condition in Windows 7 and Server 2008 R2 by sending a malformed SMB2 negotiate protocol response. The exploit listens on port 445, waits for a negotiate request, injects 4 bytes, and closes the connection, causing the target system to crash.

This exploit triggers a remote kernel crash on Windows 7 and Server 2008 R2 by sending a malformed SMB2 packet, causing an infinite loop in KeAccumulateTicks(). The crash is non-recoverable and requires a hard reset.

This exploit targets a vulnerability in SMB2.0 on Windows Vista, Server 2008, and Windows 7 RC, causing a remote Blue Screen of Death (BSOD) by sending a malformed SMB NEGOTIATE PROTOCOL REQUEST with an invalid 'Process Id High' field.

This exploit targets CVE-2009-2532, a vulnerability in Microsoft Windows SMBv2, by sending a crafted SMB packet to trigger a buffer overflow, followed by an authentication attempt to execute the injected shellcode. The payload is a reverse TCP shell generated via msfvenom.

This exploit targets a vulnerability in Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference, leading to remote code execution on Vista SP1/SP2. It spawns a reverse shell on port 28876 with SYSTEM privileges.

This repository contains a functional Python exploit for CVE-2009-3103, targeting a vulnerability in Microsoft Windows' srv2.sys SMB driver. The exploit crafts a malicious SMB packet with shellcode to achieve remote code execution on vulnerable systems.

This repository contains a functional exploit for CVE-2009-3103, targeting the SMB2 vulnerability in Microsoft Windows Vista SP1/SP2. The exploit leverages a memory corruption issue in the SMB Negotiate ProcessID Function Table to achieve remote code execution.

This repository contains a functional exploit for CVE-2009-3103, targeting a vulnerability in SMB (Server Message Block) protocol. The exploit generates a malicious SMB packet using Metasploit's msfvenom payload and sends it to the target, potentially leading to remote code execution.

This repository contains a functional exploit for CVE-2009-3103 (MS09-050), a vulnerability in SMBv2 that allows remote code execution on Windows Vista and Server 2008. The script automates the generation of shellcode, exploit payload, and Metasploit handler setup.

This repository contains functional exploit code for CVE-2009-3103, a vulnerability in Microsoft SMBv2. The exploit sends a crafted SMB packet to trigger a buffer overflow, followed by an authentication attempt to execute the payload.

This exploit targets a function table dereference vulnerability in the SMB request validation code of SRV2.SYS, causing a denial-of-service (DoS) by crashing the target system. It sends a malformed SMB negotiation request with a manipulated ProcessIDHigh value to trigger the vulnerability.

This exploit triggers a NULL pointer dereference in the SRV2.SYS kernel driver via a malformed SMB2 logoff request, causing a BSOD on vulnerable systems. It targets Microsoft Windows Vista SP1/SP2 and possibly Server 2008 SP1/SP2.

This exploit targets a function table dereference vulnerability in Microsoft SRV2.SYS SMB Negotiate ProcessID, allowing remote code execution on vulnerable Windows systems. It leverages a crafted SMB packet to trigger the vulnerability and execute shellcode in kernel mode.