Local RCE, (MSDT) office, CVE-2022-30190

[DarckSol]

https://xss.pro/threads/23818/#post-134548

 

[xerxes]

https://xss.pro/threads/23818/#post-134548

Still working or patched? I heard this exploit got patched ( no longer working)

 

[DarckSol]

Still working or patched? I heard this exploit got patched ( no longer working)

Metasploit - Wikipedia

en.wikipedia.org

Stable release: 6.1.34[1] / March 17, 2022

GitHub - Lichtlos/MSF-Installer: Script to help with installing and configuring Metasploit Framework, Armitage and the Plugins I have written on OSX and Linux

Script to help with installing and configuring Metasploit Framework, Armitage and the Plugins I have written on OSX and Linux - Lichtlos/MSF-Installer

github.com

 

[xerxes]

Metasploit - Wikipedia

en.wikipedia.org

GitHub - Lichtlos/MSF-Installer: Script to help with installing and configuring Metasploit Framework, Armitage and the Plugins I have written on OSX and Linux

Script to help with installing and configuring Metasploit Framework, Armitage and the Plugins I have written on OSX and Linux - Lichtlos/MSF-Installer

github.com

Does CVE-2022-30190 still work ?​

There is a already working metasploit module in the program

I was asking if the exploit is working at all on win 10 / 11

 

[no1]

Does CVE-2022-30190 still work ?​

There is a already working metasploit module in the program

I was asking if the exploit is working at all on win 10 / 11

the ms-msdt:// URI got disabled on my windows machine without me doing i so, I would bet updated versions of windows are not vulnerable. Other could be but I think every AV products will detect the use of ms-msdt as a malicious action so I think it can be considered as patched[.]

BUT

If you find an other windows URI scheme that executes arbitrary command, you can build it in the template instead of the ms-msdt and yo uwill get a working exploit.

 

[mazeltov81]

gooooodss