CVE-2014-4113

Related Files

Windows 8.0 / 8.1 x64 TrackPopupMenu Privilege Escalation

Posted May 21, 2015

Authored by Matteo Memelli

Microsoft Windows versions 8.0 and 8.1 on x64 TrackPopupMenu privilege escalation exploit that leverages the vulnerability documented in MS14-058.

tags | exploit

systems | windows

advisories | CVE-2014-4113

SHA-256 | 7d524f41ded3fbca83cd0ed3b01c95d13cab774d7a2fa4d2956447e6c0c1eed9

Download | Favorite | View

Exploiting CVE-2014-4113 On Windows 8.1

Posted Nov 2, 2014

Authored by Moritz Jodeit

This whitepaper discusses exploitation of CVE-2014-4113 on Windows 8.1.

tags | paper

systems | windows

advisories | CVE-2014-4113

SHA-256 | 347b65c62cf9b21ce7a51217f70945df6a72439a4ef09808f6143d9103ce6fc4

Download | Favorite | View

Windows TrackPopupMenu Win32k NULL Pointer Dereference

Posted Oct 28, 2014

Authored by Spencer McIntyre, juan vazquez, temp66 | Site metasploit.com

This Metasploit module exploits a NULL Pointer Dereference in win32k.sys, the vulnerability can be triggered through the use of TrackPopupMenu. Under special conditions, the NULL pointer dereference can be abused on xxxSendMessageTimeout to achieve arbitrary code execution. This Metasploit module has been tested successfully on Windows XP SP3, Windows 2003 SP2, Windows 7 SP1 and Windows 2008 32bits. Also on Windows 7 SP1 and Windows 2008 R2 SP1 64 bits.

tags | exploit, arbitrary, code execution

systems | windows

advisories | CVE-2014-4113

SHA-256 | 41b7d988b197d4b07886ef236a76dda4482ef1d09d5d87eb2dbc440af8850897

Download | Favorite | View