Microsoft Windows Kernel - DrawMenuBarTemp Wild-Write (MS16-039)

EDB-ID:

39712

CVE:

2016-0143

EDB Verified:

Author:

Nils Sommer

Type:

dos

Exploit:   /  

Platform:

Windows_x86-64

Date:

2016-04-20

Vulnerable App:
Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED 

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=707

The attached testcases crashes Windows 7 64-bit while attempting to write to an unmapped memory region. On 32-bit Windows 7 it triggers a null pointer read.


Proof of Concept:
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/39712.zip
Tags:
Advisory/Source: Link
Downloads Certifications Training Professional Services
Kali Linux OSCP Penetration Testing with Kali Linux (PWK) Penetration Testing
Kali NetHunter OSWP Advanced Web Attacks and Exploitation (AWAE) Advanced Attack Simulation
Kali Linux Revealed Book OSCE Offensive Security Wireless Attacks (WiFu) Application Security Assessment
OSEE Cracking the Perimeter (CTP)
OSWE Metasploit Unleashed (MSFU)
KLCP Free Kali Linux Training
Kali Linux Kali NetHunter Kali Linux Revealed Book
OSCP OSWP OSCE OSEE OSWE KLCP
Penetration Testing with Kali Linux (PWK) Advanced Web Attacks and Exploitation (AWAE) Offensive Security Wireless Attacks (WiFu) Cracking the Perimeter (CTP) Metasploit Unleashed (MSFU) Free Kali Linux training
Penetration Testing Advanced Attack Simulation Application Security Assessment