CVE-2020-3992 POC (Proof-of-Concept)

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.

Published: 2020-10-20

CVSS: 10.0

CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Download CVE-2020-3992 POC (Proof-of-Concept) here:

http://zeroday4n6aaxjruc5jgvulkdgy4mkioom5g6q7l3nz475a62vmamiyd.onion/exploit-for-cve-2020-3992.723/

Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.

https://connollyfinan.ie/poc-661-cve-2025-30220/

https://connollyfinan.ie/poc-557-cve-2024-34351/

https://connollyfinan.ie/poc-203-cve-2024-7029/

https://connollyfinan.ie/poc-626-cve-2022-1292/