cve/CVE-2010-1897.md at 48a00929accbe24477052d164512463a2824377a

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly validate pseudo-handle values in callback parameters during window creation, which allows local users to gain privileges via a crafted application, aka "Win32k Window Creation Vulnerability."

POC

Reference

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-048

Github

https://github.com/Ascotbe/Kernelhub
https://github.com/Cruxer8Mech/Idk
https://github.com/lyshark/Windows-exploits
https://github.com/ycdxsb/WindowsPrivilegeEscalation

1.0 KiB Raw Blame History

CVE-2010-1897

Description

POC

Reference

Github

1.0 KiB

Raw Blame History