CVE-2021-40449
Describe
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40450, CVE-2021-41357.
ImpactVersion
| Product | CPU Architecture | Version | Update | Tested |
|---|---|---|---|---|
| Windows 11 | x64/AMD64 | ✕ | ||
| Windows 10 | x86/x64 | |||
| Windows 10 | x86/x64 | 1607 | ✔ | |
| Windows 10 | x86/x64/AMD64 | 1809 | ✔ | |
| Windows 10 | x86/x64/AMD64 | 1909 | ||
| Windows 10 | x86/x64/AMD64 | 2004 | ||
| Windows 10 | x86/x64/AMD64 | 20H2 | ||
| Windows 10 | x86/x64/AMD64 | 21H1 | ||
| Windows 7 | x86/x64 | SP1 | ||
| Windows 8.1 | x86/x64 | |||
| Windows Rt 8.1 | ||||
| Windows Server 2008 | x86/x64 | SP2 | ||
| Windows Server 2008 | x64 | R2 | SP1 | |
| Windows Server 2012 | ||||
| Windows Server 2012 | R2 | |||
| Windows Server 2016 | ||||
| Windows Server 2019 | ||||
| Windows Server 2022 | ||||
| Windows Server | 2004 | |||
| Windows Server | 20H2 |
Patch
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40449
Utilization
CompilerEnvironment
- VS2019(V120)X64 Release(CVE-2021-40449_1607_x64
- VS2019(V142)X64 Release(CallbackHell
It is recommended to use the CallbackHell code to be proposed.
Test System Windows 10 1607 X64 (Demo is compiled with code in CVE-2021-40449_1607_X64 file
