Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-40449 PoC — Win32k Elevation of Privilege Vulnerability

Source
https://github.com/BL0odz/CVE-2021-40449-NtGdiResetDC-UAF
Associated Vulnerability
Title:Win32k Elevation of Privilege Vulnerability (CVE-2021-40449)
Description:Win32k Elevation of Privilege Vulnerability
Readme
# CVE-2021-40449-NtGdiResetDC-UAF

A POC for CVE-2021-40449.
Only tested on 1809, the code is a bit rough, but it's a good experience for me.
Instead of using the `ThreadName` method, user-space memory allocation is used.

![result.PNG](https://github.com/BL0odz/CVE-2021-40449-NtGdiResetDC-UAF/blob/main/result.PNG?raw=true)
File Snapshot

 [4.0K]  /data/pocs/79c2bd91aa1df81c9d895a9fd94fbe13568becc4
├── [ 326]  README.md
├── [116K]  result.PNG
└── [4.0K]  Source
    ├── [ 42K]  detours.h
    ├── [707K]  detours.lib
    ├── [ 12K]  main.cpp
    └── [173K]  ntos.h

1 directory, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →