CVE-2020-5752

This exploit leverages a path traversal vulnerability in Druva inSync Windows Client 6.6.3 to achieve local privilege escalation. It bypasses path validation via directory traversal sequences and executes arbitrary commands as NT AUTHORITY\SYSTEM via the inSyncCPHwnet64 RPC service.

This PowerShell script exploits a local privilege escalation vulnerability in Druva inSync Windows Client 6.6.3 by sending a crafted RPC request to inject a command that adds a new user. The exploit leverages a path traversal technique to execute arbitrary commands via the inSync service.

This PowerShell script exploits a local privilege escalation vulnerability in Druva inSync Windows Client 6.6.3 by leveraging a command injection flaw in an exposed RPC service. It sends a crafted RPC request to execute a reverse shell payload with elevated privileges.

This repository contains a functional C-based exploit for CVE-2020-5752, targeting the Druva inSync Windows Client (v6.6.3 and below). The exploit leverages an RPC service on port 6064 vulnerable to command injection via path traversal, allowing local privilege escalation to NT AUTHORITY\SYSTEM.

This Metasploit module exploits a privilege escalation vulnerability in Druva inSync (CVE-2020-5752) by sending a maliciously crafted RPC type 5 message to the inSyncCPHwnet64.exe service on TCP port 6064, allowing arbitrary command execution as SYSTEM.