j00sean / CVE-2022-44666
Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape, which was not fully fixed as CVE-2022-44666 in the patches released on December, 2022.
☆154Updated last year
Alternatives and similar repositories for CVE-2022-44666:
Users that are interested in CVE-2022-44666 are comparing it to the libraries listed below
- This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…☆77Updated last year
- DHCP Server Remote Code Execution impact: 2008 R2 SP1 до Server 2019☆69Updated last year
- PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers☆91Updated 2 years ago
- ☆128Updated last year
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆107Updated 2 years ago
- Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE☆205Updated last year
- Full disclosures for CVE ids, proofs of concept, exploits, 0day bugs and so on.☆112Updated last year
- ☆134Updated 2 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆136Updated 3 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆200Updated 3 years ago
- ☆129Updated last month
- VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)☆231Updated last year
- ☆56Updated 4 months ago
- Foxit PDF Reader Remote Code Execution Exploit☆115Updated last year
- Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers☆80Updated last year
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆129Updated 2 years ago
- lazy way to create CVE-2023-38831 winrar file for testing☆92Updated last year
- ☆162Updated last year
- ☆237Updated last year
- AV/EDR evasion via direct system calls.☆107Updated last year
- WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler☆118Updated 4 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆371Updated 2 years ago
- Winsocket for Cobalt Strike.☆97Updated last year
- CVE-2023-21554 Windows MessageQueuing PoC,分析见 https://www.zoemurmure.top/posts/cve_2023_21554/☆56Updated last year
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆108Updated last year
- POC for CVE-2021-21974 VMWare ESXi RCE Exploit☆179Updated 3 years ago
- POC tools for exploring SMB over QUIC protocol☆121Updated 2 years ago
- A basic emulation of an "RPC Backdoor"☆239Updated 2 years ago
- RCE exploit for CVE-2023-3519☆223Updated last year
- Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver☆147Updated last year