Microsoft Windows Kernel - DrawMenuBarTemp Wild-Write (MS16-039)

EDB-ID:

39712

CVE:

2016-0143

EDB Verified:

Author:

Nils Sommer

Type:

dos

Exploit:   /  

Platform:

Windows_x86-64

Date:

2016-04-20

Vulnerable App: 
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=707

The attached testcases crashes Windows 7 64-bit while attempting to write to an unmapped memory region. On 32-bit Windows 7 it triggers a null pointer read.


Proof of Concept:
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/39712.zip
Tags:
Advisory/Source: Link
Downloads Certifications Training Professional Services
Kali Linux OSCP Penetration Testing with Kali Linux (PWK) (PEN-200)
All new for 2020 		Penetration Testing
Kali NetHunter OSWP Offensive Security Wireless Attacks (WiFu) (PEN-210) Advanced Attack Simulation
Kali Linux Revealed Book OSEP Evasion Techniques and Breaching Defences (PEN-300)
All new for 2020 		Application Security Assessment
OSWE Advanced Web Attacks and Exploitation (AWAE) (WEB-300)
Updated for 2020
OSED Windows User Mode Exploit Development (EXP-301)
All new for 2021
OSEE
KLCP [Free] Kali Linux Revealed
Kali Linux Kali NetHunter Kali Linux Revealed Book
OSCP OSWP OSEP OSWE OSED OSEE KLCP
- Penetration Testing with Kali Linux (PWK) (PEN-200)
All new for 2020 Offensive Security Wireless Attacks (WiFu) (PEN-210) Evasion Techniques and Breaching Defences (PEN-300)
All new for 2020 Advanced Web Attacks and Exploitation (AWAE) (WEB-300)
Updated for 2020 Windows User Mode Exploit Development (EXP-301)
All new for 2021 [Free] Kali Linux Revealed
Penetration Testing Advanced Attack Simulation Application Security Assessment