CVE-2024-38077

This repository contains a functional exploit for CVE-2024-38077, targeting the Windows Remote Desktop Licensing Service. The exploit leverages DCE/RPC to achieve pre-authentication remote code execution (RCE) by manipulating the licensing service's handling of crafted requests.

This repository contains a functional exploit PoC for CVE-2024-38077, a heap overflow vulnerability in the Windows Remote Desktop Licensing Service. The PoC demonstrates remote code execution by sending crafted messages to the service, leveraging Impacket for RPC communication.

This repository contains a Python script that scans for the presence of the Terminal Server Licensing service via RPC, which is associated with CVE-2024-38077. It does not exploit the vulnerability but detects whether the service is exposed.

This repository contains a functional exploit PoC for CVE-2024-38077, targeting the Windows Remote Desktop Licensing Service. The exploit leverages DCE/RPC to achieve pre-authentication remote code execution (RCE) by manipulating the licensing service's handling of crafted requests.

The repository contains only a trivial 'Hello, World!' Go program and a README with placeholder images. There is no functional exploit code or technical details related to CVE-2024-38077.

This repository contains a Python script that scans for the presence of the Windows Remote Desktop Licensing Service (RDL) by connecting to the service and retrieving its version. It does not exploit CVE-2024-38077 but merely detects if the service is running.

The repository contains only a README with an image link and no technical details or exploit code. This is indicative of a social engineering lure rather than a legitimate PoC.

The repository contains only a README with file hashes for an executable named 'check_38077.exe' but no actual exploit code or technical details. This is indicative of a social engineering lure pushing external downloads.

The repository contains a Python script that connects to a license server via DCE/RPC and retrieves the server version, which appears to be a vulnerability scanner for CVE-2024-38077. The README lacks technical details and only provides basic usage instructions.

This repository contains a Python script that checks for the presence of CVE-2024-38077 by attempting to connect to the RDL service on port 135. It does not exploit the vulnerability but detects whether the target is vulnerable based on the response from the RPC connection attempt.

This repository contains a comprehensive exploit framework for CVE-2024-38077, a heap buffer overflow in the Windows Remote Desktop Licensing Service (`lserver.exe`). The exploit chain includes modules for ASLR bypass, heap grooming, and RCE via a crafted RPC request.

This repository contains a functional exploit PoC for CVE-2024-38077, leveraging RPC communication and cryptographic operations to exploit a vulnerability in a Windows-based system. The code includes client-side logic for encoding data, encrypting with RSA, and interacting with an RPC interface, suggesting a remote code execution (RCE) or privilege escalation vector.

The repository contains only a minimal README with no technical details or exploit code. It appears to be a placeholder or early-stage research note.