This zero-day flaw in Windows (originally tracked as CVE-2020-0986) is apparently not new.
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory.
An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
Microsoft released a patch in June, but that patch didnt fix the vuln,she tweetedon Wednesday.
After reporting that bad fix in Sept. under a 90-day deadline, its still not fixed.
The fix simply changed the pointers to offsets, which still allows control of the args to the memcpy.
Meanwhile, Project Zero has publicly disclosed the vulnerability withproof-of-concept codefor the issue.
source: www.techworm.net
