Windows PrivEsc Exploits

Privilege Escalation Table

The following table has been compiled to assist in the process of privilege escalation due to lack of sufficient patching.

Operating System

Description

Security Bulletin

Exploit

Windows Server 2016

Windows Kernel Mode Drivers

MS16-135

3199135

Exploit

Github

Windows Server 2008 ,7,8,10 Windows Server 2012

Secondary Logon Handle

3143141

Windows Server 2008, Vista, 7

WebDAV

MS16-016

3136041

Github

Windows Server 2003, Windows Server 2008, Windows 7, Windows 8, Windows 2012

Windows Kernel Mode Drivers

3057191

Windows Server 2003, Windows Server 2008, Windows Server 2012, 7, 8

Win32k.sys

3000061

Windows Server 2003, Windows Server 2008, 7, 8, Windows Server 2012

AFD Driver

2975684

Windows XP, Windows Server 2003

Windows Kernel

MS14-002

2914368

Metasploit

Windows Server 2003, Windows Server 2008, 7, 8, Windows Server 2012

Kernel Mode Driver

2778930

Windows Server 2008, 7

Task Scheduler

MS10-092

2305420

Metasploit

ExploitDB

Windows Server 2003, Windows Server 2008, 7, XP

KiTrap0D

977165

Windows Server 2003, XP

NDProxy

2914368

Windows Server 2003, Windows Server 2008, 7, 8, Windows Server 2012

Kernel Driver

MS15-061

3057839

Github

Windows Server 2003, XP

AFD.sys

2592799

Windows Server 2003, XP

NDISTAPI

MS11-062

2566454

ExploitDB

Windows Server 2003, Windows Server 2008, 7, 8, Windows Server 2012

RPC

MS15-076

3067505

Github

Windows Server 2003, Windows Server 2008, 7, 8, Windows Server 2012

Hot Potato

3164038

Windows Server 2003, Windows Server 2008, 7, XP

Kernel Driver

MS15-010

3036220

GitHub

ExploitDB

Windows Server 2003, Windows Server 2008, 7, XP

AFD.sys

MS11-046

2503665

EXE

ExploitDB

PreviousCommon Windows PrivEsc NextAbusing Files Permissions

Last updated 4 years ago