Remote RCE, Microsoft SharePoint, CVE-2020-16952

[pyx0rnull]

Products: Microsoft Sharepoint 2013 SP1, 2016, 2019
CVE: CVE-2020-16952
References:

Source Incite

experts in offensive technologies

srcincite.io

Security Update Guide - Microsoft Security Response Center

portal.msrc.microsoft.com

PoC / Exploits:

https://srcincite.io/pocs/cve-2020-16952.py.txt

Metasploit module:

Packet Storm

Information Security Services, News, Files, Tools, Exploits, Advisories, and Whitepapers

packetstormsecurity.com

 

[ms3c]

Thanks for sharing man. really helpful