SMBGhost_RCE_PoC icon indicating copy to clipboard operation
SMBGhost_RCE_PoC copied to clipboard

Published 20 hours ago verified publisher icon chompie1337

Please

Open wanghualei2 opened this issue 4 years ago • 7 comments

Hello,I always have the problem " Failed to find low stub in physical memory!" Do you have some suggestion? I hope to receive your rely!

wanghualei2 avatar Jun 22 '20 07:06 wanghualei2

Hello,I always have the problem " Failed to find low stub in physical memory!" Do you have some suggestion? I hope to receive your rely!

You check if firewall turn off!

whitehat9090 avatar Jun 22 '20 12:06 whitehat9090

Hello,I always have the problem " Failed to find low stub in physical memory!" Do you have some suggestion? I hope to receive your rely!

On target machine, run:

C:\Users\Administrator>netsh advfirewall set allprofiles state off

0xFF1E071F avatar Jun 23 '20 05:06 0xFF1E071F

Hello,I always have the problem " Failed to find low stub in physical memory!" Do you have some suggestion? I hope to receive your rely!

On target machine, run:

C:\Users\Administrator>netsh advfirewall set allprofiles state off

I had set allprofiles state off.It seem low stub is not lie the address

wanghualei2 avatar Jun 23 '20 05:06 wanghualei2

Are you using you target machine "Debug mode ON" Because i am getting the same error when my target machine is set to bcdedit /set debug yes @chompie1337 any ideas?

0xFF1E071F avatar Jun 23 '20 09:06 0xFF1E071F

Hmm, so it seems like it's possible the low stub is not present on the VM. it does a search for it at all physical addresses <1MB. how the VM is configured can affect this but I'm not too sure of the details as there is not much research available about it.

I've tested using VMWare Fusion and VMWare Workstation both BIOS and UEFI using "easy install" setup and it seems to be present in both. Can you describe your testing env?

EDIT: tested the above both in debug mode and non debug mode as well

chompie1337 avatar Jun 23 '20 17:06 chompie1337

Hmm, so it seems like it's possible the low stub is not present on the VM. it does a search for it at all physical addresses <1MB. how the VM is configured can affect this but I'm not too sure of the details as there is not much research available about it.

I've tested using VMWare Fusion and VMWare Workstation both BIOS and UEFI using "easy install" setup and it seems to be present in both. Can you describe your testing env?

EDIT: tested the above both in debug mode and non debug mode as well

@chompie1337 i have opened a new issue for this: https://github.com/chompie1337/SMBGhost_RCE_PoC/issues/13

0xFF1E071F avatar Jun 24 '20 07:06 0xFF1E071F

Hmm, so it seems like it's possible the low stub is not present on the VM. it does a search for it at all physical addresses <1MB. how the VM is configured can affect this but I'm not too sure of the details as there is not much research available about it. I've tested using VMWare Fusion and VMWare Workstation both BIOS and UEFI using "easy install" setup and it seems to be present in both. Can you describe your testing env? EDIT: tested the above both in debug mode and non debug mode as well

@chompie1337 i have opened a new issue for this: #13

I use the virtualbox.the vmware is failed in win10

wanghualei2 avatar Jun 24 '20 07:06 wanghualei2