CVE-2017-8464

This Python script generates a malicious LNK file exploiting CVE-2017-8464, a vulnerability in Windows' handling of shortcut files. It constructs a crafted Shell Link Binary File Format with malicious payloads to achieve remote code execution.

This Metasploit module exploits CVE-2017-8464, a vulnerability in Windows LNK file handling that allows arbitrary DLL loading via a malicious shortcut file. It generates a crafted LNK file with a SpecialFolderDataBlock to bypass the CPL whitelist and achieve remote code execution.

The repository contains no actual exploit code or technical details, only a reference to an external GitHub repository and a link to a third-party analysis. This is characteristic of a social engineering lure.

This repository contains a proof-of-concept exploit for CVE-2017-8464, a Windows LNK remote code execution vulnerability. It includes LNK files for both x86 and x64 architectures, leveraging a DLL to execute arbitrary code when a user opens a malicious shortcut file.

The repository contains no actual exploit code or technical details, only a reference to an external GitHub repository and a Chinese article. This is characteristic of a suspicious repository that may be attempting to redirect users to external sources.

This Python script generates a malicious LNK file exploiting CVE-2017-8464, a vulnerability in Windows' handling of shortcut files. It constructs a Shell Link Binary File Format with embedded malicious paths to achieve remote code execution.

This repository contains a Python-based tool for detecting exploitation attempts of CVE-2017-8464, a vulnerability in Windows Shell that allows remote code execution via maliciously crafted .LNK files. The PoC includes detailed analysis of network packet signatures and a detection script.

This repository contains a proof-of-concept exploit for CVE-2017-8464, a Windows LNK remote code execution vulnerability. It includes LNK files for both x86 and x64 architectures, leveraging a flaw in how Windows handles shortcut files to execute arbitrary code.

The repository contains only a README file with minimal information about CVE-2017-8464, mentioning it is a USB drive PoC but lacking any actual exploit code or technical details.

This repository contains a Python script designed to detect potential exploitation attempts of CVE-2017-8464 by analyzing network traffic for suspicious patterns, such as executable payloads (MZ headers) in TCP packets. It captures live traffic, converts it to CSV, and checks against a sample database of known malicious payloads.

This repository contains a Python-based detection tool for CVE-2017-8464, which exploits a vulnerability in Windows Shell to execute arbitrary code via malicious LNK files. The code includes a server to monitor network traffic for attack patterns and a client to scan USB drives for malicious payloads.

This is a Metasploit module that exploits CVE-2017-8464, a vulnerability in Windows Shell that allows arbitrary code execution via a crafted .LNK file. The exploit generates a malicious DLL and LNK files designed to trigger the vulnerability when parsed by Windows Explorer or other applications.

This Metasploit module exploits CVE-2017-8464, a Windows LNK file vulnerability, by creating a malicious shortcut that loads a DLL from a crafted Control Panel applet, achieving local privilege escalation.