header-logo
Suggest Exploit
vendor:
Windows 7
by:
Mohamed El-Sherei
8,8
CVSS
HIGH
GDI Object Abuse
119
CWE
Product Name: Windows 7
Affected Version From: Windows 7 SP1 x86
Affected Version To: Windows 7 SP1 x86
Patch Exists: YES
Related CWE: N/A
CPE: o:microsoft:windows_7::sp1:x86
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2017

DC25 5A1F – Demystifying Windows Kernel Exploitation by Abusing GDI Objects

This exploit abuses a newly discovered GDI object abuse technique to gain Ring 0 primitives. The technique involves the abuse of the GDI palette objects to gain arbitrary read/write primitives. The exploit is demonstrated on Windows 7 SP1 x86.

Mitigation:

Microsoft has released a patch for this vulnerability.
Source

Exploit-DB raw data:

Sources:
- https://github.com/sensepost/gdi-palettes-exp
- https://sensepost.com/blog/2017/abusing-gdi-objects-for-ring0-primitives-revolution/

Windows 7 SP1 x86 exploit presented at DEF CON 25 involving the abuse of a newly discovered GDI object abuse technique. 

DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects 

- https://www.defcon.org/html/defcon-25/dc-25-speakers.html#El-Sherei 
- https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/5A1F/


Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42435.zip

Navigation

Suggest Exploit

Services By CQR