Share
## https://sploitus.com/exploit?id=18DDCE68-65E3-5475-A4F3-DEB7D4065601
# CVE-2023-36802 MSKSSRV.sys Local Privilege Escalation
PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy which suffers from a type confusion vulnerability. 

This proof-of-concept is modeled after the write-up done by Benoît Sevens (@benoitsevens). The article can be found here: https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-36802.html

Original exploit and writeup done by Valentina Palmiotti (@chompie1337)
https://securityintelligence.com/x-force/critically-close-to-zero-day-exploiting-microsoft-kernel-streaming-service/

NOTE: This was only tested on Windows 11 22H2 22621.1848. PreviousMode attacks may be mitigated in insider builds.

![image](https://github.com/x0rb3l/CVE-2023-36802-MSKSSRV-LPE/assets/29740744/35b7a53e-f3f6-4f3f-bd9e-27e7d9f9be71)