cve/2011/CVE-2011-0045.md

CVE-2011-0045

Description

The Trace Events functionality in the kernel in Microsoft Windows XP SP3 does not properly perform type conversion, which causes integer truncation and insufficient memory allocation and triggers a buffer overflow, which allows local users to gain privileges via a crafted application, related to WmiTraceMessageVa, aka "Windows Kernel Integer Truncation Vulnerability."

POC

Reference

• http://securityreason.com/securityalert/8110

Github

• https://github.com/Ascotbe/Kernelhub
• https://github.com/Cruxer8Mech/Idk
• https://github.com/ycdxsb/WindowsPrivilegeEscalation