Magnitude exploit kit – evolution

APTFilter CERT-LatestNews ThreatsCybercrime ThreatsStrategic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesFirmware VulnerabilitiesMicrosoft VulnerabilitiesOS
Elevation of privilege exploit. The elevation of privilege exploit used by Magnitude EK is quite interesting. When I saw it for the first time, I wasn’t able to recognize this particular exploit. It exploited a vulnerability in the win32k kernel driver and closer analysis revealed that this particular vulnerability was fixed in December 2018.