what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Xuefeng Li

Print Spooler Remote DLL Injection

Posted May 25, 2022

Authored by Christophe de la Fuente, Spencer McIntyre, Zhiniang Peng, cube0x0, Xuefeng Li, Zhang Yunhai, Piotr Madej, Zhipeng Huo | Site metasploit.com

The print spooler service can be abused by an authenticated remote attacker to load a DLL through a crafted DCERPC request, resulting in remote code execution as NT AUTHORITY\SYSTEM. This module uses the MS-RPRN vector which requires the Print Spooler service to be running.

tags | exploit, remote, code execution

advisories | CVE-2021-1675, CVE-2021-34527

SHA-256 | 1720ad267b345d6b91409cdb01c0ab129fc9f485ac71c4c4a816698bd6351239

Download | Favorite | View

PrintNightmare Windows Spooler Service Remote Code Execution

Posted Jul 2, 2021

Authored by Zhiniang Peng, Xuefeng Li | Site github.com

PrintNightmare remote code execution proof of concept exploit for the Windows Spooler Service.

tags | exploit, remote, code execution, proof of concept

systems | windows

advisories | CVE-2021-1675

SHA-256 | 65f3a8fdee04d68517612f8bbb28b7e29a2396d68991acfedf0892a70576c47a

Download | Favorite | View