cve/2011/CVE-2011-1249.md

### [CVE-2011-1249](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1249)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The Ancillary Function Driver (AFD) in afd.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."

### POC

#### Reference
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-046
- https://www.exploit-db.com/exploits/40564/

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Al1ex/WindowsElevation
- https://github.com/Ascotbe/Kernelhub
- https://github.com/CVEDB/PoC-List
- https://github.com/CVEDB/awesome-cve-repo
- https://github.com/Cruxer8Mech/Idk
- https://github.com/H3xL00m/CVE-2011-1249
- https://github.com/Madusanka99/OHTS
- https://github.com/N3rdyN3xus/CVE-2011-1249
- https://github.com/Sp3c73rSh4d0w/CVE-2011-1249
- https://github.com/c0d3cr4f73r/CVE-2011-1249
- https://github.com/crypticdante/CVE-2011-1249
- https://github.com/fei9747/WindowsElevation
- https://github.com/k4u5h41/CVE-2011-1249
- https://github.com/lyshark/Windows-exploits
- https://github.com/n3ov4n1sh/CVE-2011-1249
- https://github.com/ycdxsb/WindowsPrivilegeEscalation
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2011-1249](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1249)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`The Ancillary Function Driver (AFD) in afd.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."`

			`### POC`

			`#### Reference`
			`- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-046`
			`- https://www.exploit-db.com/exploits/40564/`

			`#### Github`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/Al1ex/WindowsElevation`
			`- https://github.com/Ascotbe/Kernelhub`
			`- https://github.com/CVEDB/PoC-List`
			`- https://github.com/CVEDB/awesome-cve-repo`
Update Mon May 27 13:12:02 UTC 2024 2024-05-27 13:12:02 +00:00			`- https://github.com/Cruxer8Mech/Idk`
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`- https://github.com/H3xL00m/CVE-2011-1249`
			`- https://github.com/Madusanka99/OHTS`
Update CVE sources 2024-08-09 18:54 2024-08-09 18:54:21 +00:00			`- https://github.com/N3rdyN3xus/CVE-2011-1249`
Update CVE sources 2024-07-25 21:25 2024-07-25 21:25:12 +00:00			`- https://github.com/Sp3c73rSh4d0w/CVE-2011-1249`
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`- https://github.com/c0d3cr4f73r/CVE-2011-1249`
			`- https://github.com/crypticdante/CVE-2011-1249`
			`- https://github.com/fei9747/WindowsElevation`
			`- https://github.com/k4u5h41/CVE-2011-1249`
			`- https://github.com/lyshark/Windows-exploits`
			`- https://github.com/n3ov4n1sh/CVE-2011-1249`
			`- https://github.com/ycdxsb/WindowsPrivilegeEscalation`