0day/CVE-2021-34486 at master - 0day - 临风笛

admin/0day

History

helloexp 5940ce2a91 add several 2021 cve

2022-03-01 16:56:58 +08:00

..

add several 2021 cve

2022-03-01 16:56:58 +08:00

CVE-2021-34486_x64.exe

add several 2021 cve

2022-03-01 16:56:58 +08:00

CVE-2021-34486.sln

add several 2021 cve

2022-03-01 16:56:58 +08:00

README_EN.md

add several 2021 cve

2022-03-01 16:56:58 +08:00

README.md

add several 2021 cve

2022-03-01 16:56:58 +08:00

README_EN.md

CVE-2021-34486

Describe

Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26425, CVE-2021-34487.

ImpactVersion

Product	CPU Architecture	Version	Update	Tested
Windows 10	x86/x64
Windows 10	x86/x64/AMD64	1809
Windows 10	x86/x64/AMD64	1909		✔
Windows 10	x86/x64/AMD64	2004
Windows 10	x86/x64/AMD64	20H2
Windows 10	x86/x64/AMD64	21H1
Windows Server 2019
Windows Server		2004
Windows Server		20H2

Patch

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34486

Utilization

CompilerEnvironment

VS2019（V142）X64 Release

Organic blue screen

Test System Windows 10 1909 X64

ProjectSource

KaLendsi

Analyze

Event Tracing for Windows (ETW) TimerCallbackContext Object Use-After-Free Vulnerability