2022starupdated_atnameurldes 424 2024-08-30T13:59:42Z CVE-2022-25636 https://github.com/Bonfee/CVE-2022-25636 CVE-2022-25636 458 2024-08-24T18:49:47Z CVE-2022-21882 https://github.com/KaLendsi/CVE-2022-21882 win32k LPE 687 2024-08-12T20:22:27Z CVE-2022-29072 https://github....
2022 starupdated_atnameurldes 428 2025-01-27T01:16:24Z CVE-2022-25636 https://github.com/Bonfee/CVE-2022-25636 CVE-2022-25636 461 2024-12-27T12:18:55Z CVE-2022-21882 https://github.com/KaLendsi/CVE-2022-21882 win32k LPE 1095 2025-03-18T11:27:38Z CVE-2022-0847-DirtyPipe-Exploit...
完整代码保存在:https://github.com/LegendSaber/exp_x64/blob/master/exp_x64/CVE-2022-21882.cpp。编译运行就可以成功提权: 参考资料 https://blog.csdn.net/qq_41252520/article/details/124506261 https://www.anquanke.com/post/id/267197 球分享 球点赞 球...
CVE-2022-21882技术细节参见:https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-21882.html 本文翻译自:https://www.bleepingcomputer.com/news/microsoft/windows-vulnerability-with-new-public-exploits-lets-you-become-admin/如若转载,请注明原文地址。
https://github.com/KaLendsi/CVE-2022-21882 https://github.com/sam-b/windows_kernel_address_leaks/blob/master/HMValidateHandle/HMValidateHandle/HMValidateHandle.cpp https://docs.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-setwindowlongptra ...
CVE-2022-21882是对CVE-2021-1732漏洞的绕过,属于win32k驱动程序中的一个类型混淆漏洞。 攻击者可以在user_mode调用相关的GUI API进行内核调用,如xxxMenuWindowProc、xxxSBWndProc、xxxSwitchWndProc、xxxTooltipWndProc等,这些内核函数会触发回调xxxClientAllocWindowClassExtraBytes。攻击者可以通过hook KernelCallbackTable ...
msf6 exploit(windows/local/cve_2022_21882_win32k) > sessionsActive sessions=== Id Name Type Information ...
1.https://github.com/0x5bfa/NT5.1/blob/1b390dddff9fe017e9c11a7845c67a887c3483dc/Source/XPSP1/NT/windows/core/ntuser/kernel/mnsys.c#L5112.https://github.com/L4ys/CVE-2022-21882/blob/main/CVE-2022-21882.cpp3.https://github.com/KaLendsi/CVE-2022-21882/blob/main/ExploitTest.cpp4....
1.https://github.com/0x5bfa/NT5.1/blob/1b390dddff9fe017e9c11a7845c67a887c3483dc/Source/XPSP1/NT/windows/core/ntuser/kernel/mnsys.c#L5112.https://github.com/L4ys/CVE-2022-21882/blob/main/CVE-2022-21882.cpp3.https://github.com/KaLendsi/CVE-2022-21882/blob/main/ExploitTest.cpp4....
CVE-2022-0185:Linux 内核漏洞可导致逃逸Kubernetes中的容器 cve-2022-23131:zabbix-saml-bypass-exp|另一个 cve-2022-23131 CVE-2022-22947:Spring Cloud Gateway远程代码执行|CVE-2022-22947:golang 版本|cve-2022-22947-godzilla-memshell:CVE-2022-22947 注入Godzilla内存马 spring-cloud-function-SpEL-RCE:Sprin...