> The above PoC uses explorer.exe as the target process.
$ find / -name explorer.exe | wc
0 0 0
On Sun, Apr 24, 2022, 7:51 PM zeynepaydogan wrote:
>
>
> I'm curious if this is https://nvd.nist.gov/vuln/detail/CVE-2022-21882 on
> which I get "connection refused" on the exploit link.
>
>
>
> Not same
>
It would be good to know the CVE, but it is of course a great rare share.
>
> I'm curious if this is https://nvd.nist.gov/vuln/detail/CVE-2022-21882 on
> which I get "connection refused" on the exploit link.
Not same
I'm curious if this is https://nvd.nist.gov/vuln/detail/CVE-2022-21882 on
which I get "connection refused" on the exploit link.
https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
Adventures with KernelCallbackTable Injection
21 Apr 2022 » [redteam](https://captmeelo.com/category/redteam),
[maldev](https://captmeelo.com/category/maldev)
Lately, I came across with KernelCallbackTable