CVE-2018-19320 PoC — 多款GIGABYTE产品访问控制错误漏洞

Source

Associated Vulnerability

Description

CVE-2018-19320 LPE Exploit

Readme

# CVE-2018-19320 LPE Exploit

## Description

Local Privilege Escalation Exploit of CVE-2018-19320. The exploit uses the exposed functions in **gdrv.sys** that allow a low-level user to allocate and write data to memory for escalating the privileges to SYSTEM. 



## ScreenShot

**Tested on:**  Windows 10 x64 21H1 (OS Build 1903.1165)

![image-20210819200340188](img/image-20210819200340188.png)



## Affected Versions

- GIGABYTE APP Center v1.05.21 and previous
- AORUS GRAPHICS ENGINE v1.33 and previous
- XTREME GAMING ENGINE v1.25 and previous
- OC GURU II v2.08



## Credits

The vulnerability was discoverd by Diego Juarez

Adviosry: https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-of-privilege-vulnerabilities/

File Snapshot

 [4.0K]  /data/pocs/a4411c1db95e1b82e44b8e207c47b1902781e1d3
├── [4.0K]  CVE-2018-19320-LPE-Exploit
│   ├── [4.0K]  CVE-2018-19320-LPE-Exploit
│   │   ├── [5.9K]  CVE-2018-19320-LPE-Exploit.cpp
│   │   ├── [6.9K]  CVE-2018-19320-LPE-Exploit.vcxproj
│   │   ├── [ 969]  CVE-2018-19320-LPE-Exploit.vcxproj.filters
│   │   └── [ 165]  CVE-2018-19320-LPE-Exploit.vcxproj.user
│   └── [1.4K]  CVE-2018-19320-LPE-Exploit.sln
├── [4.0K]  img
│   └── [312K]  image-20210819200340188.png
└── [ 746]  README.md

3 directories, 7 files

Remarks