CVE-2015-2291

This exploit demonstrates a vulnerability in Intel Network Adapter Diagnostic Driver (iqvw32.sys/iqvw64e.sys) where insufficient input validation in IOCTL handling leads to a SYSTEM_SERVICE_EXCEPTION (0x3B) bugcheck. The PoC triggers a crash by sending malformed IOCTL requests (e.g., 0x80862013) with invalid memory addresses (0xDEADBEEF), proving arbitrary memory access and potential for privilege escalation.

This PoC exploits CVE-2015-2291, a vulnerability in Intel drivers, to achieve arbitrary kernel memory overwrite and execute arbitrary code in the kernel. It includes functionality for physical to virtual address translation and mapping physical memory.

This repository contains a proof-of-concept exploit for CVE-2015-2291, targeting the Intel Ethernet diagnostics driver (IQVW32.sys/IQVW64.sys) on Windows 7 and 10. The exploit leverages IOCTL calls to trigger arbitrary kernel code execution via uncontrolled `memset` and `memmove` operations.

This repository contains a functional proof-of-concept exploit for CVE-2015-2291, a local privilege escalation vulnerability in the Intel Ethernet diagnostics driver (iqvw64e.sys). The exploit leverages an arbitrary memory read/write primitive via a vulnerable IOCTL handler to replace the current process token with the SYSTEM token.

This repository provides an analysis and reverse engineering overview of the CVE-2015-2291 exploit targeting the Intel Ethernet Diagnostics Driver (iQVW32.sys) for memory manipulation, specifically for HWID spoofing. It includes compiled IDA Professional 9.1 files and a writeup.