CVE-2016-0095

Describe

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0093, CVE-2016-0094, and CVE-2016-0096.

ImpactVersion

Product	Version	Update	Tested
Windows 10
Windows 10	1511
Windows 7		SP1	✔
Windows 8.1
Windows Rt 8.1
Windows Server 2008		SP2
Windows Server 2008	R2	SP1	✔
Windows Server 2012
Windows Server 2012	R2
Windows Vista		SP2

Utilization

The X64 version in the project is perfect for Windows 7 SP1 X64 and Windows Server 2008 R2 SP1 X64. The X86 version in the project can only utilize Windows 7 (the blue screen will be caused after the window)

Test the GIF map of Windows 7 SP1 X64

Analyze

https://xz.aliyun.com/t/6008
http://weaponx.site/2017/08/11/CVE-2016-0095%E4%BB%8EPoC%E5%88%B0Exploit/
https://whereisk0shl.top/ssctf_pwn450_windows_kernel_exploitation_writeup.html
github https://github.com/k0keoyo/SSCTF-pwn450-ms16-034-writeup

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README_EN.md

README_EN.md

CVE-2016-0095

Describe

ImpactVersion

Utilization

Analyze

Files

README_EN.md

Latest commit

History

README_EN.md

File metadata and controls

CVE-2016-0095

Describe

ImpactVersion

Utilization

Analyze