高危
Severity and Metrics
Base Score:
—
Vector:
—
Impact Score:
—
Exploitability Score:
—
Windows-wkssvc.dll-二进制-整型溢出
POC
EXP/POC/漏洞分析下载
发布时间:2024-12-25 17:14:31
更新时间:2024-12-25 17:14:31
应用类型:操作系统
漏洞类型:整型溢出
提交时间:2024-12-25 17:00:29
发现时间:2024-12-25 00:00:00
漏洞描述
Windows Workstation Service 中存在整数溢出漏洞,成功利用该漏洞可实现 EOP
相关编号
CVE编号:CVE-2024-38050
CNNVD编号:—
CNVD编号:—
影响版本
Windows 11 Version 22H2 for ARM64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for 32-bit Systems
Windows 11 version 21H2 for ARM64-based Systems
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows 11 version 21H2 for x64-based Systems
Windows Server 2022 (Server Core installation)
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2022
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 for x64-based Systems
前置条件
简单
主机需在域内
影响后果
特权升级
拒绝服务
补丁修复信息
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38050
Exp漏洞截图及验证视频
游客用户没有权限查看,请
登录
Poc漏洞截图及验证视频
游客用户没有权限查看,请
登录
操作记录
2024-12-25 17:00:29
提交漏洞
2024-12-25 17:04:54
审核漏洞
2024-12-25 17:14:31
发布漏洞
安全星图平台专注于威胁情报的收集、处理、分析、应用,定期提供高质量的威胁情报。