PoC is not working...

Question

PoC is not working...

Opened this issue a year ago · 3 comments

furkan-enes-polatoglu commented a year ago

PoC is not working. There is a error.

Answer 1 · 2023-09-20T09:11:04.000Z

Just change '.\\data\\' to 'data/' in poc.py.

Still not working for me after though, getting the following:

└─$ python poc.py                 
[+] Establish connection.
[+] Receive data done.
[+] Connection parameters.
[+] Receive data done.
[+] User message.
Traceback (most recent call last):
  File "/home/kali/Tools/CVE-2023-21554-PoC/poc.py", line 48, in <module>
    sock.recv(1024)
ConnectionResetError: [Errno 104] Connection reset by peer

Answer 2 · 2023-09-20T09:22:06.000Z

Just change '.\data\' to 'data/' in poc.py.

Still not working for me after though, getting the following:

└─$ python poc.py                 
[+] Establish connection.
[+] Receive data done.
[+] Connection parameters.
[+] Receive data done.
[+] User message.
Traceback (most recent call last):
  File "/home/kali/Tools/CVE-2023-21554-PoC/poc.py", line 48, in <module>
    sock.recv(1024)
ConnectionResetError: [Errno 104] Connection reset by peer

It may have been exploited successfully, did the mqsvc.exe process crash?

Answer 3 · 2023-09-20T09:29:59.000Z

Just change '.\data' to 'data/' in poc.py.
Still not working for me after though, getting the following:
└─$ python poc.py                 
[+] Establish connection.
[+] Receive data done.
[+] Connection parameters.
[+] Receive data done.
[+] User message.
Traceback (most recent call last):
  File "/home/kali/Tools/CVE-2023-21554-PoC/poc.py", line 48, in <module>
    sock.recv(1024)
ConnectionResetError: [Errno 104] Connection reset by peer
It may have been exploited successfully, did the mqsvc.exe process crash?

I believe it did, just didn't expect a python error while running the poc.
Not really after DoS by the way, more interested in RCE. Any ideas on how to abuse this to gain RCE?