CVE-2020-1350 SIGRed PoC Demo - Microsoft Windows DNS Server DoS Vulnerability

preview_player
Показать описание
This vulnerability has been identified by researchers from CheckPoint and Microsoft as Critical with the ability to perform Remote Code Execution. In this Proof of Concept, the vulnerability is designed to crash the DNS Server as a Denial of Service.

➨ Versions Affected:
Server 2008
Server 2008 R2
Server 2012
Server 2012 R2
Server 2016
Server 2019

➨ Workaround:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DNS\Parameters]
DWORD = TcpReceivePacketSize
Value = 0xFF00
* Note: A restart of the DNS Service is required to take effect.

➨ Great Researchers:

➨ Additional Resources:
  1. Jonathan Singer
Рекомендации по теме
CVE-2020-1350 SIGRed PoC 0:03:30

CVE-2020-1350 SIGRed PoC Demo - Microsoft Windows DNS Server DoS Vulnerability

SigRed CVE-2020-1350 RCE 0:00:43

SigRed CVE-2020-1350 RCE Exploit Demo

Exploit SIGRed, the 0:02:27

Exploit SIGRed, the 17 yo DNS vuln that RCEs Windows (CVE-2020-1350)

DOS exploit CVE 0:00:24

DOS exploit CVE 2020 1350 SIGRed

Detecting SIGRed CVE 0:08:04

Detecting SIGRed CVE 2020 1350

CVE-2020-1350 RCE in 0:01:55

CVE-2020-1350 RCE in Windows DNS Server Attack

What You Need 0:43:50

What You Need to Know About the Windows DNS Vulnerability - CVE-2020-1350

RCE on Windows 0:01:19

RCE on Windows Server 2012 R2 with CVE 2020 1350 SIGRed

RCE on Windows 0:01:13

RCE on Windows Server 2016 with CVE 2020 1350 SIGRed

How Bad is 0:19:25

How Bad is the SIGRed (CVE-2020-1350) Windows DNS Security Flaw?

CVE-2020-1350 0:00:43

CVE-2020-1350

0patching CVE-2020-1350 0:01:23

0patching CVE-2020-1350

ALL ABOUT CVE-2020-1350 0:06:25

ALL ABOUT CVE-2020-1350 Microsoft DNS Vulnerability and How to Fix it

SIGRed - Windows 0:01:07

SIGRed - Windows DNS Server Vulnerablity - How it works

RCE on Windows 0:01:08

RCE on Windows Server 2019 with CVE 2020 1350 SIGRed

Remote Code Execution 0:00:30

Remote Code Execution in Windows DNS Server

Demo of CVE-2020-15999 0:01:14

Demo of CVE-2020-15999

CVE-2020-1350 Sigred опасная 0:19:52

CVE-2020-1350 Sigred опасная уязвимость в DNS Windows Server

SIGRed - Monitoring 0:50:48

SIGRed - Monitoring and Detecting with Splunk

CRITICAL Microsoft DNS 0:03:54

CRITICAL Microsoft DNS Vulnerability

CVE-2020-5902 PoC Demo 0:03:30

CVE-2020-5902 PoC Demo - F5 BIG-IP TMUI RCE Vulnerability

SigRed MS DNS 0:09:24

SigRed MS DNS Vulnerability | AT&T ThreatTraq

SIGRed: Windows DNS 0:00:33

SIGRed: Windows DNS Server Remote Code Execution | Check Point Research

Exploiting CVE 2020-3520 0:01:00

Exploiting CVE 2020-3520 : POC

Комментарии
Автор

Can you please share step by step for this PoC

anubhawiway
Автор

Looks like it's time to update again. How are you preparing to deploy patches?

thejonathansinger