CVE-2020-17086
HIGHRaw Image Extension < 1.0.32861.0 - Remote Code Execution
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-17086. PoCs published by T81oub.
AI-analyzed exploit summary This PoC exploits a heap-based buffer overflow in the Windows CNG (Cryptography Next Generation) driver via a malformed IOCTL request, leading to a potential local privilege escalation (LPE). The overflow occurs due to an integer truncation when calculating buffer size, allowing controlled heap corruption.
Description
Raw Image Extension Remote Code Execution Vulnerability
Exploits (1)
This PoC exploits a heap-based buffer overflow in the Windows CNG (Cryptography Next Generation) driver via a malformed IOCTL request, leading to a potential local privilege escalation (LPE). The overflow occurs due to an integer truncation when calculating buffer size, allowing controlled heap corruption.
References (1)
Scores
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H