Lucene search

K
zdtCan Bölük1337DAY-ID-30427
HistoryMay 23, 2018 - 12:00 a.m.

Microsoft Windows - POP/MOV SS Privilege Escalation Exploit

2018-05-2300:00:00
Can Bölük
0day.today
87

EPSS

0.001

Percentile

31.1%

Exploit for windows platform in category local exploits

Demo exploitation of the POP SS vulnerability (CVE-2018-8897), leading to unsigned code execution with kernel privilages.
 
- KVA Shadowing should be disabled and the relevant security update should be uninstalled.
- This may not work with certain hypervisors (like VMWare), which discard the pending #DB after INT3.
 
Proof of Concept:
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44697.zip

#  0day.today [2018-05-23]  #