CVE-2021-31956

This repository contains a functional exploit for CVE-2021-31956, a Windows kernel vulnerability involving heap overflow in the Windows Notification Facility (WNF). The exploit demonstrates local privilege escalation by manipulating WNF state data to achieve arbitrary write primitives and token theft.

This repository contains a functional proof-of-concept exploit for CVE-2021-31956, leveraging a heap overflow in Windows NTFS Extended Attributes (EA) to corrupt adjacent pool objects, specifically targeting _WNF_STATE_DATA structures. The exploit demonstrates memory corruption techniques to achieve local privilege escalation (LPE) by manipulating undocumented NT API calls.

The repository contains only a placeholder README and a single empty C++ file, with no functional exploit code or technical details about CVE-2021-31956.

This repository contains a functional exploit for CVE-2021-31956, a Windows NTFS vulnerability involving out-of-bounds (OOB) write via Extended Attributes (EA) manipulation. The exploit leverages WNF (Windows Notification Facility) state data corruption to achieve arbitrary read/write primitives.

This repository contains a functional exploit for CVE-2021-31956, a Windows kernel vulnerability involving WNF (Windows Notification Facility) state name manipulation and EA (Extended Attributes) file operations. The exploit demonstrates memory corruption via heap spraying and arbitrary kernel memory read/write primitives.