Microsoft Windows afd.sys Race Condition Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the afd.sys driver...

PT-2024-5585 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the August 2024 update microsoft windows 10 1507 10.0.10240.20751 microsoft windows 10 1607 10.0.14393.7259 microsoft windows 10 1809 10.0.17763.6189 microsoft windows 10 21h2 10.0.19044.4780 microsoft...

CVE-2023-21768

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability...

Microsoft Windows 7 Kernel - Pool-Based Out-of-Bounds Reads Due to bind() Implementation Bugs in afd

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1127 We have identified two related bugs in Windows kernel code responsible for implementing the bind socket function, specifically in the afd!AfdBind and tcpip!TcpBindEndpoint...

Microsoft Windows 7 Kernel - Pool-Based Out-of-Bounds Reads Due to bind() Implementation Bugs in afd.sys / tcpip.sys

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1127 We have identified two related bugs in Windows kernel code responsible for implementing the bind socket function, specifically in the afd!AfdBind and tcpip!TcpBindEndpoint routines. They both can lead to reading beyond the...

Microsoft Windows 7 Kernel - Pool-Based Out-of-Bounds Reads Due to bind() Implementation Bugs in afd.sys tcpip.sys

Microsoft Windows 7 Kernel - Pool-Based Out-of-Bounds Reads Due to bind Implementation Bugs in afd.sys tcpip.sys Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1127 We have identified two related bugs in Windows kernel code responsible for implementing the bind socket function,...

MS14-040 Microsoft Windows 7 (x86) - 'afd.sys' Dangling Pointer Privilege Escalation (CVE-2014-1767)

No description provided by source. Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-02-05 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 32 bit Tested on: Win7 x32 afd.sys - 6.1.7600.16385 ntdll.dll - 6.1.7600.16385 CVE : CVE-2014-1767 Category:...

MS11-046: Vulnerability in Windows AFD.sys could allow elevation of privilege: June 14, 2011

MS11-046: Vulnerability in Windows AFD.sys could allow elevation of privilege: June 14, 2011 Introduction Microsoft has released security bulletin MS11-046. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:...

Microsoft Windows (x86) - 'afd.sys' Local Privilege Escalation (MS11-046)

/ Exploit Title: Windows x86 all versions AFD privilege escalation MS11-046 Date: 2016-10-16 Exploit Author: Tomislav Paskalev Vulnerable Software: Windows XP SP3 x86 Windows XP Pro SP2 x64 Windows Server 2003 SP2 x86 Windows Server 2003 SP2 x64 Windows Server 2003 SP2 Itanium-based Systems Windo...

Microsoft Windows (x86) - afd.sys Local Privilege Escalation (MS11-046)

Microsoft Windows x86 - afd.sys Local Privilege Escalation MS11-046 / Exploit Title: Windows x86 all versions AFD privilege escalation MS11-046 Date: 2016-10-16 Exploit Author: Tomislav Paskalev Vulnerable Software: Windows XP SP3 x86 Windows XP Pro SP2 x64 Windows Server 2003 SP2 x86 Windows...

Microsoft Windows 7 (x64) - afd.sys Dangling Pointer Privilege Escalation (MS14-040)

Microsoft Windows 7 x64 - afd.sys Dangling Pointer Privilege Escalation MS14-040 Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-03-03 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 64 bit Tested on: Win7 x64 afd.sys - 6.1.7601.17514 ntdll.dll -...

Microsoft Windows 7 (x64) - 'afd.sys' Dangling Pointer Privilege Escalation (MS14-040)

Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-03-03 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 64 bit Tested on: Win7 x64 afd.sys - 6.1.7601.17514 ntdll.dll - 6.1.7601.17514 CVE : CVE-2014-1767 Category: Local Privilege Escalation Reference...

Microsoft AFD.SYS Dangling Pointer Privilege Escalation

Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-02-05 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 32 bit Tested on: Win7 x32 afd.sys - 6.1.7600.16385 ntdll.dll - 6.1.7600.16385 CVE : CVE-2014-1767 Category: Local Privilege Escalation Reference...

Microsoft Windows 7 (x86) - afd.sys Dangling Pointer Privilege Escalation (MS14-040)

Microsoft Windows 7 x86 - afd.sys Dangling Pointer Privilege Escalation MS14-040...

Microsoft Windows 7 (x86) - 'afd.sys' Dangling Pointer Privilege Escalation (MS14-040)

Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-02-05 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 32 bit Tested on: Win7 x32 afd.sys - 6.1.7600.16385 ntdll.dll - 6.1.7600.16385 CVE : CVE-2014-1767 Category: Local Privilege Escalation Reference...

Microsoft Windows - 'afd.sys' Dangling Pointer Privilege Escalation (MS14-040)

Exploit for windows platform in category local exploits Exploit Title: MS14-040 - AFD.SYS Dangling Pointer Date: 2016-02-05 Exploit Author: Rick Larabee Vendor Homepage: www.microsoft.com Version: Windows 7, 32 bit Tested on: Win7 x32 afd.sys - 6.1.7600.16385 ntdll.dll - 6.1.7600.16385 CVE :...

MS15-119: Security Update for Winsock to Address Elevation of Privilege (3104521)

The remote Windows host is affected by an elevation of privilege vulnerability due to a flaw in Winsock in which a call is made to a memory address without verifying that the address is valid. An authenticated, remote attacker can exploit this, via a specially crafted application, to gain elevate...

Windows-XP-2003-Afd.sys-Escalation

MS11-080 - CVE-2011-2005 Afd.sys Privilege Escalation Exploit Author: [email protected] - Matteo Memelli HalDispatchTable+0x4+1 from ctypes import windll, CDLL, Structure, byref, sizeof, POINTER, cchar, cshort, cushort, cint, cuint, culong, cvoidp, clong, ccharp from ctypes.wintypes import HANDLE...

Microsoft Windows Ancillary Function Driver Elevation of Privilege Vulnerability (2975684)

This host is missing a critical security update according to Microsoft Bulletin MS14-040. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

(Pwn2Own) Microsoft Windows AFD.SYS Dangling Pointer Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling o...