I've confirmed that this works well in a fully-patched 64-bit Windows 10 system. LPE right to SYSTEM! https://twitter.com/SandboxEscaper/status/1034125195148255235 …
-
This Tweet is unavailable.Show this thread
-
I've published: https://www.kb.cert.org/vuls/id/906424 I'm currently unaware of any workarounds.
8 replies 17 retweets 44 likesShow this thread -
I can't imagine too many people are interested, but I can confirm that with minor tweaks the public exploit code for the Windows Task Manager ALPC vul works on 32-bit Windows 10 as well.pic.twitter.com/1pf2JU6D2o
4 replies 23 retweets 42 likesShow this thread -
But my systems have antivirus! With AI and heuristics and stuff... Get real. https://www.virustotal.com/#/file/81a4dbf1132e6cb43f45b803b8f46e85cb9d3a60dbe560762f4cc49461758641/detection …pic.twitter.com/cRKKrFIudw
2 replies 3 retweets 11 likesShow this thread -
SYSTEM code execution on Windows 7. Just for fun.pic.twitter.com/Fx7nMYK1rJ
3 replies 6 retweets 8 likesShow this thread -
Replying to @wdormann
Hoho, I considered releasing this. Still on the fence about doing it.
1 reply 0 retweets 0 likes -
Replying to @GossiTheDog
All of the pieces have all been there for the public to see since Monday, and well documented at that. It's only a matter of time...
1 reply 0 retweets 0 likes -
Replying to @wdormann
Yeppers. Did you have to change the print driver path? My XPS driver had a different folder name.
1 reply 0 retweets 0 likes
Nah, I don't leverage anything with printers. You know, just to drive home the fact that this exploit/vul has nothing to do with printers. :) Also, perhaps it goes without saying, but the DLL injection stuff is all just a technique chosen by the original author. Not required.pic.twitter.com/gVrC34cxKI
-
-
Replying to @wdormann
Oh that’s cool, you’ve done the hard work - I called out in blog it’s possible to abuse this other ways, but I was too lame to try. I just fixed the print stuff for other OSes.
0 replies 0 retweets 1 likeThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.