SSD Advisory - ksthunk.sys Integer Overflow (PE) - SSD Secure Disclosure
ssd-disclosure.com
Summary A vulnerability in the ksthunk.sys CKSAutomationThunk::ThunkEnableEventIrp allows a local attacker to exploit an Integer Overflow vulnerability which can then be used to gain elevated privileges in the Windows operating system. The exploit was successfully demonstrated during the TyphoonPWN 2024 event and took second place. Credit An independent security researcher participating in TyphoonPWN 2024 and … SSD Advisory – ksthunk.sys Integer Overflow (PE) Read More »