Skip to content
cyberexploits
localwindowstext

Microsoft Windows 7 - 'WebDAV' Privilege Escalation (MS16-016) (2)

Microsoft Windows 7 - 'WebDAV' Privilege Escalation (MS16-016) (2)

Publié le 2016-05-09

Code source

Épinglé au commit 7eac4c3a2ce5
textplatforms/windows/local/39788.txt7eac4c3a
raw
# Exploit Title: WebDAV Elevation of Privilege Vulnerability (MS16)-2

# Date: 8/5/2016

# Exploit Author: hex0r

# Version:WebDAV on Windows 7 84x

# CVE : CVE-2016-0051





Intro:

Credits go to koczkatama for coding a PoC, however if you run this exploit

from shell connection, not a remote desktop, the result will be getting the

privileged shell in new GUI windows.



Again Thanks to

https://github.com/koczkatamas/CVE-2016-0051

https://www.exploit-db.com/exploits/39432/



PoC:

Download the source code (C#) also there will be compiled version as well,

copy the dll file and the executable to the target machine, run it to get

SYSTEM,





Proof of Concept:

https://github.com/hexx0r/CVE-2016-0051

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/39788.zip

Voir sur GitHub
Microsoft Windows 7 - 'WebDAV' Privilege Escalation (MS16-016) (2) · CyberExploits