CVE-2023-36802

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2023-36802, targeting the Microsoft Kernel Streaming Service (MSKSSRV) on Windows 11 22H2. The exploit leverages I/O Ring primitives to achieve SYSTEM privileges by manipulating kernel memory structures.

This exploit targets CVE-2023-36802, a vulnerability in Windows 10/11, leveraging object address leakage and pipe spraying to achieve local privilege escalation. The code includes functions for memory manipulation and kernel object interaction.

This is a functional proof-of-concept exploit for CVE-2023-36802, targeting a type confusion vulnerability in the Microsoft Kernel Streaming Service Proxy (MSKSSRV.sys) to achieve local privilege escalation (LPE) on Windows 11 22H2. The exploit leverages pipe spraying and kernel object manipulation to escalate privileges.

This exploit leverages CVE-2023-36802, a Windows kernel vulnerability, to achieve local privilege escalation (LPE) by manipulating kernel objects and token structures. It uses pool spraying and race conditions to overwrite critical kernel memory, ultimately replacing the current process token with the SYSTEM token.

This repository contains a proof-of-concept exploit for CVE-2023-36802, targeting a Windows kernel vulnerability via io_uring operations. The exploit involves spraying non-paged pool memory and manipulating kernel objects to achieve local privilege escalation.