I've confirmed that this works well in a fully-patched 64-bit Windows 10 system. LPE right to SYSTEM! https://twitter.com/SandboxEscaper/status/1034125195148255235 …
-
-
But my systems have antivirus! With AI and heuristics and stuff... Get real. https://www.virustotal.com/#/file/81a4dbf1132e6cb43f45b803b8f46e85cb9d3a60dbe560762f4cc49461758641/detection …pic.twitter.com/cRKKrFIudw
Show this thread -
New conversation -
-
-
Would adding spoolsv.exe to exploit guard and enabling “do not allow child processes” mitigate this poc? Wonder what it would break.
-
This does appear to break this particular PoC. But there's nothing special about spoolsv.exe that is tied to the actual vulnerability. In other words, somebody could modify the PoC to just target another service. But yeah, for the already-compiled exploit code, it seems to work.
- 1 more reply
New conversation -
-
-
Need to discuss on it , how can i DM you, please suggest !
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Is it still working ?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.