CVE-2011-1249 PoC — Microsoft Windows 'AFD.sys'驱动程序特权提升漏洞

Source

https://github.com/n3ov4n1sh/CVE-2011-1249

Associated Vulnerability

Title:Microsoft Windows 'AFD.sys'驱动程序特权提升漏洞 (CVE-2011-1249)
Description:Microsoft Windows是美国微软（Microsoft）公司发布的一系列操作系统。 Microsoft Windows的辅助功能驱动程序(afd.sys)错误地验证从用户模式传递到内核的输入的方式，导致存在特权提升漏洞。攻击者可利用此漏洞执行任意代码，并可完全控制受影响的系统。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。

Readme

# CVE-2011-1249
🖥️ -k4u5h41-
#### Microsoft Windows (x86) - 'afd.sys' Local Privilege Escalation (MS11-046)

	apt install mingw-w64
	i686-w64-mingw32-gcc 40564.c -o newshell.exe -lws2_32
  
![image](https://user-images.githubusercontent.com/66146701/125174645-4f214080-e173-11eb-89f8-c699cc7b31d0.png)

![image](https://user-images.githubusercontent.com/66146701/125174669-8ee82800-e173-11eb-9a0a-1761e20c2e8e.png)

File Snapshot


 [4.0K]  /data/pocs/5cf19fb15e64d022c9be342b05c7e9272f241eaa
├── [ 32K]  40564.c
└── [ 421]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.