CVE-2015-1701

This Metasploit module exploits a vulnerability in the win32k.sys kernel mode driver (CVE-2015-1701) to achieve local privilege escalation on Windows 7 and Windows Server 2008 R2 systems. It injects a reflective DLL into a target process (e.g., notepad.exe) to execute the exploit payload.

This exploit targets a Win32k local privilege escalation vulnerability (CVE-2015-1701) used in APT attacks. It includes compiled binaries and source code for both x86 and x64 architectures, demonstrating a functional exploit for escalating privileges on Windows systems.

This is a working proof-of-concept exploit for CVE-2015-1701, a Win32k Elevation of Privilege Vulnerability. It leverages a hook in the _ClientCopyImage function to execute a token-stealing payload, elevating privileges to SYSTEM.

The repository contains only a README with basic CVE information, references to external sources, and no actual exploit code or technical details. It lacks functional PoC or analysis.

This repository contains a README file describing CVE-2015-1701, a Win32k Elevation of Privilege Vulnerability. It provides references to the original advisory, mitigation steps, and social media links but does not include exploit code or technical details.

The repository contains only a README.md file with minimal content, providing no exploit code or technical details for CVE-2015-1701. It appears to be a placeholder or incomplete submission.

This Metasploit module exploits a vulnerability in the win32k.sys kernel mode driver (CVE-2015-1701) to achieve local privilege escalation on vulnerable Windows systems. It uses reflective DLL injection to execute the exploit payload.

This repository contains a functional exploit for CVE-2015-1701, a Win32k Elevation of Privilege Vulnerability. The exploit leverages a flaw in the Windows kernel to escalate privileges by manipulating process tokens.

This repository contains documentation and metadata generation scripts for a collection of Windows kernel exploits, including CVE-2003-0352, CVE-2006-3439, CVE-2008-1084, and others. It does not include functional exploit code for CVE-2015-1701 but provides structured documentation and tooling for managing exploit information.