CVE-2021-28476

PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.

0vercl0k PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitchsys

PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.

CVE-2021-28476: a guest-to-host "Microsoft Hyper-V Remote Code Execution Vulnerability" in vmswitchsys This is a proof of concept for CVE-2021-28476 ("Hyper-V Remote Code Execution Vulnerability"), an arbitrary memory read in vmswitchsys (network virtualization service provider) patched by Microsoft in May 2021 The vulnerability was found by @australeo,

CVE-2021-28476: Hyper-V vmswitch.sys arbitrary pointer dereference from guest VM

CVE-2021-28476: Hyper-V vmswitchsys arbitrary pointer dereference from guest VM Summary: A Hyper-V guest virtual machine can trigger a Denial-of-Service condition on its underlying host due to unsafe parsing of input by the VmsIfrInfoParams_OID_SWITCH_NIC_REQUEST function in vmswitchsys The crash is caused by the function attempting to dereference a guest controlled value as

CVE-2021-28476: Microsoft Hyper-V: Multiple Vulnerabilities in vmswitch Multiple bugs are present in WPP code when handling set OID requests, one of them allowing to dereference (read access) an attacker controlled pointer, and the rest causing out of bounds read accesses This repository contains the proof-of-concept code to trigger the identified issues A full technical desc

Hyper-V related resources

Hyper-V stuff This repository contains some of the Hyper-V related work I did in the past GHHv6_ch25 My code from the "Inside Hyper-V" of the Gray Hat Hacking book (6th edition) Original repository: githubcom/GrayHatHacking/GHHv6git Includes a framework that can be used to perform hypervisor research/fuzzing and hyper-v specific code (hypercalls, MSRs, V