Win32k Elevation of Privilege Vulnerability

This repository is a proof-of-concept (PoC) exploit for CVE-2019-0803, a Win32k Elevation of Privilege vulnerability affecting Microsoft Windows 7 SP1. The structure consists of a Visual Studio solution with project files and a header file (struct.h) that defines various Windows internal structures and constants used in the exploit. The README indicates the exploit's purpose is to steal a security token, allowing local privilege escalation. The exploit must be compiled and run locally on a vulnerable Windows 7 SP1 system. No network or remote attack vector is present; the attack is purely local. The repository references a related exploit for CVE-2016-7255 for further context. The main exploit logic is likely implemented in the (not provided) main.cpp and DDE.cpp files, with struct.h providing necessary data structures for interacting with Windows internals.

This repository is a proof-of-concept (PoC) exploit for CVE-2019-0803, a Win32k Elevation of Privilege vulnerability affecting Microsoft Windows 7 SP1. The exploit is implemented as a Visual Studio C++ project, with the main code files (such as main.cpp, DDE.cpp, and struct.h) located under win7sp1/poc_test/. The struct.h file defines various Windows kernel structures and constants used for the exploit, including those related to window management and process tokens. The README.md provides a brief description, a screenshot link, and a reference to a related exploit (CVE-2016-7255). The exploit's main capability is to locally escalate privileges by stealing a security token, allowing the attacker to gain elevated access on a vulnerable system. No network or remote attack vectors are present; the exploit must be run locally. The repository is structured as a standard Visual Studio project, and the exploit is at the proof-of-concept stage, requiring manual compilation and execution.