CVE-2022-21882 PoC — Microsoft Win32k 缓冲区错误漏洞

Source

https://github.com/dishfwk/CVE-2022-21882

Associated Vulnerability

Title:Microsoft Win32k 缓冲区错误漏洞 (CVE-2022-21882)
Description:Microsoft Win32k是美国微软（Microsoft）公司的一个用于Windows多用户管理的系统文件。 Microsoft Win32K 存在安全漏洞。以下产品和版本受到影响：Windows 10 Version 21H1 for 32-bit Systems,Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 1909 for ARM64-based Systems,Win

Readme

# CVE-2022-21882
win32k LPE bypass CVE-2021-1732

only tested on  windows 20h2 19042.1415 

https://twitter.com/kalendsi/status/1483770845138804738

![image]( https://github.com/KaLendsi/CVE-2022-21882/blob/main/CVE-2022-21882.gif)

File Snapshot


 [4.0K]  /data/pocs/ee46c2b6473f4c79b169d7072c3ffefb0f6e1cfa
├── [201K]  CVE-2022-21882.gif
├── [ 16K]  ExploitTest.cpp
├── [8.0K]  ExploitTest.vcxproj
├── [1.4K]  ExploitTest.vcxproj.filters
├── [ 162]  ExploitTest.vcxproj.user
├── [ 232]  README.md
├── [ 162]  shellcode.asm
├── [ 209]  stdafx.cpp
├── [ 219]  stdafx.h
└── [ 228]  targetver.h

0 directories, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!