5 matches found
CVE-2013-1300
creationtimestamp| type| source ---|---|--- 2014-05-06 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33213 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/ms13053schlamperei.rb 2025-02-06 03:13:41+00:00|...
Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows NTUserMessageCall Win32k Kernel Pool Overflow...
Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
This module leverages a kernel pool overflow in Win32k which allows local privilege escalation. The kernel shellcode nulls the ACL for the winlogon.exe process a SYSTEM process. This allows any unprivileged process to freely migrate to winlogon.exe, achieving privilege escalation. This exploit wa...
CVE-2013-1300
CVE-2013-1300 maps to a Win32k memory handling vulnerability in win32k.sys affecting multiple Windows XP/Vista/7/8/2003/Server variants. The issue is a local privilege escalation via a crafted application that abuses kernel memory object handling, enabling an attacker to gain SYSTEM-level privile...
Microsoft Windows Kernel 'Win32k.sys'本地权限提升漏洞(CVE-2013-1300)(MS13-053)
BUGTRAQ ID: 60946 CVECAN ID: CVE-2013-1300 Microsoft Windows是微软公司推出的一系列操作系统。 Windows 内核模式驱动程序不正确地处理内存中的对象,存在一个特权提升漏洞。成功利用此漏洞的攻击者可以使用提升的特权执行任意代码。 0 Microsoft Windows Windows XP Service Pack 3 Microsoft Windows Windows Vista x64 Edition Serv Microsoft Windows Windows Vista Service Pack 2 Microsoft...