PT-2023-2243

🗓️ 11 Apr 2023 00:00:00Reported by Positive TechnologiesType

Elevation of privilege in Windows CLFS Driver due to a buffer overflow; exploited by ransomware such as Nokoyawa.

Reporter	Title	Published	Views	Family All 94
0day.today	Windows Common Log File System Driver (clfs.sys) Privilege Escalation Exploit	14 Sep 202300:00	–	zdt
GithubExploit	Exploit for Use After Free in Microsoft	30 Jul 202508:04	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	27 Jun 202312:22	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	1 Jan 202415:30	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	27 Jun 202312:22	–	githubexploit
GithubExploit	Exploit for CVE-2024-6768	18 Jul 202407:52	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	22 Jan 202410:38	–	githubexploit
ATTACKERKB	CVE-2023-28252	11 Apr 202300:00	–	attackerkb
Information Security Automation	Microsoft Patch Tuesday April 2023: CLFS EoP, Word RCE, MSMQ QueueJumper RCE, PCL6, DNS, DHCP	27 Apr 202322:03	–	avleonov
Information Security Automation	Vulristics News: EPSS v3 Support, Integration into Cloud Advisor	23 Apr 202323:11	–	avleonov

Source	Link
twitter	www.twitter.com/net1/status/1737801115159458103
t	www.t.me/proxy_bar/1602
msrc	www.msrc.microsoft.com/update-guide/en-US/advisory/CVE-2023-28252
t	www.t.me/p0x3k/1672
twitter	www.twitter.com/two_minwarning/status/1737777654139400626
t	www.t.me/echeloneyes/3005
t	www.t.me/cveNotify/139770
t	www.t.me/avleonovcom/1096
t	www.t.me/pentestingnews/34929
t	www.t.me/cybersecuritytechnologies/8595