Microsoft Windows XP - Win32k.sys Local Privilege Escalation Exploit

2009-07-30T00:00:00
ID EDB-ID:9301
Type exploitdb
Reporter NT Internals
Modified 2009-07-30T00:00:00

Description

Microsoft Windows XP (win32k.sys) Local Privilege Escalation Exploit. CVE-2009-2653. Local exploit for windows platform

                                        
                                            ////////////////////////////////////////////////////////////////////////////////////
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | Microsoft Corporation - http://www.microsoft.com/                          | //
// |                                                                            | //
// | Affected Software:                                                         | //
// | Windows XP Service Pack 2                                                  | //
// | Windows XP Service Pack 3                                                  | //
// |                                                                            | //
// | Affected Driver:                                                           | //
// | Multi-User Win32 Driver - win32k.sys <= 5.1.2600.5796                      | //
// |                                                                            | //
// | Local Privilege Escalation Exploit                                         | //
// | For Educational Purposes Only !                                            | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | NT Internals - http://www.ntinternals.org/                                 | //
// | alex ntinternals org                                                       | //
// | 30 July 2009                                                               | //
// |                                                                            | //
// | References:                                                                | //
// | Exploiting Common Flaws in Drivers                                         | //
// | Ruben Santamarta - http://www.reversemode.com/                             | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
////////////////////////////////////////////////////////////////////////////////////

Exploit:
http://www.ntinternals.org/win32k/NtUserConsoleControl_Exp.zip
back: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/9301.zip (2009-NtUserConsoleControl_Exp.zip)

Description:
http://www.ntinternals.org/index.html#09_07_30

# milw0rm.com [2009-07-30]