CVE-2019-1064 PoC — Windows Elevation of Privilege Vulnerability

Source

https://github.com/RythmStick/CVE-2019-1064

Associated Vulnerability

Title:Windows Elevation of Privilege Vulnerability (CVE-2019-1064)
Description:An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could then install programs; view, change or delete data. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system. The security update addresses the vulnerability by correcting how Windows AppX Deployment Service handles hard links.

Description

CVE-2019-1064 Local Privilege Escalation Vulnerability

Readme

# CVE-2019-1064 - AppXSVC Local Privilege Escalation

https://www.rythmstick.net/posts/cve-2019-1064/

File Snapshot


 [4.0K]  /data/pocs/6a0b86c6fd524d1ba54255b39a8d8b68f193818f
├── [4.0K]  AppXSVC_poc
│   ├── [ 182]  App.config
│   ├── [3.7K]  AppXSVC_poc.csproj
│   ├── [3.8K]  Exploit.cs
│   ├── [ 139]  FodyWeavers.xml
│   ├── [6.5K]  FodyWeavers.xsd
│   ├── [ 301]  packages.config
│   └── [4.0K]  Properties
│       └── [1.4K]  AssemblyInfo.cs
├── [1.1K]  AppXSVC_poc.sln
├── [ 34K]  LICENSE
└── [ 102]  README.md

2 directories, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!