CVE-2018-19321 PoC — 多款GIGABYTE产品权限许可和访问控制问题漏洞

Source

https://github.com/nanabingies/Driver-RW

Associated Vulnerability

Title:多款GIGABYTE产品权限许可和访问控制问题漏洞 (CVE-2018-19321)
Description:GIGABYTE APP Center等都是中国技嘉科技（GIGABYTE Technology）公司的产品。GIGABYTE APP Center是一款用于管理、更新技嘉产品工具程序的软件。AORUS GRAPHICS ENGINE是一款显卡超频软件。多款GIGABYTE产品中的GPCIDrv和GDrv低级别驱动程序存在安全漏洞。本地攻击者可利用该漏洞提升权限。以下产品和版本受到影响：GIGABYTE APP Center 1.05.21及之前版本；AORUS GRAPHICS ENGINE 1.33

Description

Page Table Manipulation -- CVE-2018-19321

Readme

# Driver-RW

Elevate to NT AUTHORITY\SYSTEM with CVE-2018-19321

Tested on WIndows 10 v1511

File Snapshot


 [4.0K]  /data/pocs/0d73bf0cc88caa328936713ef8e18d01c93c25a9
├── [2.0K]  memory.cpp
├── [ 475]  memory.hpp
├── [2.7K]  process.cpp
├── [ 530]  process.hpp
├── [  92]  README.md
├── [2.1K]  Source.cpp
├── [4.7K]  virtual_memory.cpp
└── [ 400]  virtual_memory.hpp

0 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!