Microsoft Windows Kernel – ‘FlashWindowEx’ Memory Corruption (MS15-097) - 体验盒子

作者： Nils Sommer

日期： 2015-09-22

类别：

dos

平台：

windows_x86

来源：https://www.exploit-db.com/exploits/38276/

Source: https://code.google.com/p/google-security-research/issues/detail?id=475

---
The attached PoC triggers a wild write on Win 7 32-bit with Special Pool enabled on win32k.sys.
---

Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/38276.zip

Microsoft Windows Kernel – ‘FlashWindowEx​’ Memory Corruption (MS15-097)

Microsoft Windows Kernel – ‘FlashWindowEx’ Memory Corruption (MS15-097)