Exploit for Vulnerability in Microsoft CVE-2023-21768

Name: Exploit for Vulnerability in Microsoft CVE-2023-21768
Rating: 5 (201 reviews)

2023-04-20 | CVSS 4.3

## https://sploitus.com/exploit?id=1CF38F98-5ABB-51BF-9844-75A5F3EB675D
# CVE-2023-21768-AFD-for-WinSock-EoP-exploit

分析文章在这里：

https://mp.weixin.qq.com/s/9W9puJltbK-xto2A1duqgQ

https://www.zoemurmure.top/posts/cve_2023_21768/

根据 [Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours](https://securityintelligence.com/posts/patch-tuesday-exploit-wednesday-pwning-windows-ancillary-function-driver-winsock/) 自己编写出来的，添加了提权后的 cleanup 代码，可成功实现提权。测试平台：Windows 11 22621.963 Windows Feature Experience Pack 1000.22638.1000.0

运行截图：

![screenshot-20230420-163108](https://user-images.githubusercontent.com/43516782/233308029-b26fa71a-2eee-4f8e-88d1-3d1852355d6b.png)


提权成功：

![screenshot-20230420-163018](https://user-images.githubusercontent.com/43516782/233307633-064f6b7e-5fe3-4e86-98d6-08b65ecbc3cd.png)