Research & Development
$ #

PowerShell script, Unicode quotes and ウィンドウズ - a story of uncommon command injection

Author: Krzysztof Andrusiak, 14.09.2021

Can you see the difference between " and “ or ' and ‘ ? You can? You've got sharp eyes! Well, PowerShell can't see it. Now, imagine an application which inserts user-provided input into string in dynamically generated PowerShell script while sanitizing only "typical" quotes... Sounds like trouble? RCE handed on a silver platter? But hold your horses, it's not that easy!