Giters

x0rb3l / CVE-2023-36802-MSKSSRV-LPE

PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

CVE-2023-36802 MSKSSRV.sys Local Privilege Escalation

PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy which suffers from a type confusion vulnerability.

This proof-of-concept is modeled after the write-up done by Benoît Sevens (@benoitsevens). The article can be found here: https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-36802.html

Original exploit and writeup done by Valentina Palmiotti (@chompie1337) https://securityintelligence.com/x-force/critically-close-to-zero-day-exploiting-microsoft-kernel-streaming-service/

NOTE: This was only tested on Windows 11 22H2 22621.1848. PreviousMode attacks may be mitigated in insider builds.

image

About

PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy

Languages

Language:C 100.0%