MS Windows XP/2003 AFD.sys Privilege Escalation Exploit (K-plugin)

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : MS Windows XP/2003 AFD.sys Privilege Escalation Exploit (K-plugin)
# Published : 2008-10-15
# Author : Ruben Santamarta
# Previous Title : BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit
# Next Title : MS Windows 2003 Token Kidnapping Local Exploit PoC

Hi,

I have just uploaded a k-plugin for Kartoffel, which exploits a flaw
patched in the recent MS08-066 bulletin.

http://kartoffel.reversemode.com/downloads.php
backup: http://exploit-db.com/sploits/2008-afd_plugin.zip


For those researchers interesting in digging a little bit more into this
flaw, just take a look at afd!AfdGetRemoteAddress and/or check this out

http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx

Regards,
Rub??n.

# www.Syue.com [2008-10-15]