Skip to content
/ batbadbut-demo Public

This is a simple demo for the BadBatBut vulnerability CVE-2024-24576

4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

corysabol/batbadbut-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
README.md
README.md
 
 
serverinfo.bat
serverinfo.bat
 
 

Repository files navigation

CVE-2024-24576 BadBatBut Demo

This is a simple demo for the BadBatBut vulnerability CVE-2024-24576.

More information here - https://blog.rust-lang.org/2024/04/09/cve-2024-24576.html.

This repository is for educational purposes only.

Usage

Pre-built binary

  • Get the pre-built windows binary from the releases.
  • Run the server binary ./badbatbut-demo.exe

Build from source

  • Clone this repo
  • Run the code on a Windows box cargo run

Exploit

The server exposes an endpoint /server_info/{server} on http://localhost:9999 which runs a .bat file to fetch server info. The vulnerability can be exploited by sending a GET request to this endpoint like follows:

Write-Output (Invoke-WebRequest -Uri "http://localhost:9999/server_info/localhost&&whoami").Content

About

This is a simple demo for the BadBatBut vulnerability CVE-2024-24576

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

BatBadBut Demo Binary Latest
Apr 18, 2024

Packages

No packages published

Languages