CVE-2017-11783

HIGH

Windows 8.1, 10, RT 8.1, Server 2012 R2, 2016 - Elevation of Privilege via ALPC

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-11783. PoCs published by Sheisback.

AI-analyzed exploit summary This PoC exploits CVE-2017-11783, a vulnerability in Windows ALPC-RPC, to create a file in the system32 directory with elevated privileges. It leverages a race condition and oplock manipulation to achieve this, though it does not execute arbitrary commands with system privileges.

Description

Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability in the way it handles calls to Advanced Local Procedure Call (ALPC), aka "Windows Elevation of Privilege Vulnerability".

Exploits (1)

nomisec WORKING POC 4 stars

by Sheisback · poc

https://github.com/Sheisback/CVE-2017-11783

View Code ZIP pw:eip

This PoC exploits CVE-2017-11783, a vulnerability in Windows ALPC-RPC, to create a file in the system32 directory with elevated privileges. It leverages a race condition and oplock manipulation to achieve this, though it does not execute arbitrary commands with system privileges.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: Microsoft Windows (specific version not specified)

No auth needed

Prerequisites: Local access to the target system · Python environment with required libraries (e.g., pywin32)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1039526

Patch, Vendor Advisory x_refsource_confirm

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11783

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/101144

Scores

CVSS v3 7.0

EPSS 0.0361

EPSS Percentile 87.9%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (9)

microsoft/windows_10

microsoft/windows_10 1511

microsoft/windows_10 1607

microsoft/windows_10 1703

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_2012 r2

microsoft/windows_server_2016

Microsoft Corporation/Windows Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703

Published Oct 13, 2017

Tracked Since Feb 18, 2026