19 matches found
PoC_kernel_NULL_pointer_clfs.sys
No d...
CVE-2026-2636
This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" weakness, which leads to an unrecoverable inconsistency in the CLFS.sys driver. This condition forces a call to the KeBugCheckEx function, allowing an unprivileged user to trigger a system crash...
Microsoft Windows 安全漏洞
Microsoft Windows is an operating system used on personal devices by the American company Microsoft. There are security vulnerabilities in Microsoft Windows, which stem from improper handling of special elements in the CLFS.sys driver. These vulnerabilities may allow unauthorized users to trigger...
Microsoft Windows Common Log File System Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2024-6768
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function...
Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege
Exploit Title: Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege Date: 2025-04-16 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL MiRROR-H: https://mirror-h.org/search/hacker/49626/ CVE: CVE-2024-49138 include...
CVE-2024-6768
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function...
CVE-2024-6768 Denial of Service in CLFS.sys
A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function...
CVE-2024-6768
CVE-2024-6768 affects the Windows Common Log File System (CLFS.sys) and can be triggered by a crafted BLF input to cause an unrecoverable state, leading to a Blue Screen of Death (BSOD). The vulnerability stems from improper validation of input quantities in CLFS, specifically manipulating the _C...
Exploit for CVE-2024-6768
CVE-2024-6768: Improper validation of specified quantity in in...
Exploit for Out-of-bounds Read in Microsoft
Information ============== Windows Kernel Pool clfs.sys Cor...
Exploit for Out-of-bounds Read in Microsoft
Information ============== Windows Kernel Pool clfs.sys Cor...
Windows Common Log File System Driver (clfs.sys) Elevation of Privilege Vulnerability
A privilege escalation vulnerability exists in the clfs.sys driver which comes installed by default on Windows 10 21H2, Windows 11 21H2 and Windows Server 20348 operating systems. The clfs.sys driver contains a function CreateLogFile that is used to create open and edit '.blf' base log format...
Windows Common Log File System Driver (clfs.sys) Privilege Escalation Exploit
A privilege escalation vulnerability exists in the clfs.sys driver which comes installed by default on Windows 10 21H2, Windows 11 21H2 and Windows Server 20348 operating systems. This Metasploit module exploit makes use to two different kinds of specially crafted .blf files. This module requires...
Exploit for Out-of-bounds Write in Microsoft
Since February 2022 was reported a new ransomware that appears t...
Microsoft Windows CLFS Heap-based Buffer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the clfs.sys drive...
Microsoft Windows 10 CLFS.sys ValidateRegionBlocks privilege escalation vulnerability
Summary A privilege escalation vulnerability exists in the CLFS.sys ValidateRegionBlocks functionality of Microsoft Windows 10 CLFS.SYS 10.0.19041.264 WinBuild.160101.0800 and Insider Preview CLFS.SYS 10.0.20150.1000 WinBuild.160101.0800. A specially crafted malformed log file can cause a heap...
Microsoft Windows CLFS Use-After-Free Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CLFS.SYS drive...
Microsoft Windows CLFS Driver Elevation of Privilege (MS16-134: CVE-2016-3338)
A memory corruption vulnerability exists within the CLFS.SYS component of Microsoft Windows. It can be triggered by loading specially crafted .blf files. Successful exploitation of this issue might lead to local privilege escalation...