CVE-2020-17382

This exploit demonstrates a local privilege escalation vulnerability in MSI Ambient Link Driver 1.0.0.8 by leveraging a kernel stack-based buffer overflow to execute arbitrary shellcode, ultimately stealing a SYSTEM token for privilege escalation.

This repository contains functional privilege escalation exploits for CVE-2020-17382, targeting Windows 10 1709 and Windows 7 x64 SP1. The exploits leverage a kernel stack-based buffer overflow in the MSI Ambient Link driver to achieve local privilege escalation via token stealing.

This is a functional exploit for CVE-2020-17382, a Windows kernel vulnerability in the MsIo driver. It leverages a type confusion bug to achieve local privilege escalation (LPE) via a crafted IOCTL call, executing a token-stealing shellcode payload to obtain SYSTEM privileges.