CVE-2020-1054

This is a Rust-based local privilege escalation (LPE) exploit for CVE-2020-1054, targeting Windows 7 x64. It leverages a GDI object manipulation vulnerability to achieve arbitrary memory writes and escalate privileges.

This exploit leverages CVE-2020-1054, a Windows GDI privilege escalation vulnerability, by manipulating bitmap objects and abusing HMValidateHandle to achieve arbitrary code execution in the context of the SYSTEM user. The PoC includes shellcode injection and command execution via a reverse shell.

This is a working proof-of-concept exploit for CVE-2020-1054, a Windows local privilege escalation vulnerability in the win32k.sys driver. The exploit leverages a bitmap memory corruption issue to achieve arbitrary read/write in kernel memory, ultimately replacing the current process token with the SYSTEM token.

This is a working proof-of-concept exploit for CVE-2020-1054, a Windows local privilege escalation vulnerability. It leverages a GDI object manipulation flaw to overwrite kernel memory and escalate privileges to SYSTEM by replacing the current process token with the system token.

This Metasploit module exploits CVE-2020-1054, an out-of-bounds write vulnerability in the DrawIconEx function within win32k.sys, allowing local privilege escalation to SYSTEM on Windows 7 x64 SP1. It leverages controlled kernel memory writes to achieve arbitrary code execution.

This repository contains documentation and metadata generation scripts for a collection of Windows kernel exploits, including CVE-2003-0352, CVE-2006-3439, and others. It does not include functional exploit code but provides structured documentation and configuration tools for organizing exploit information.