Windows Common Log File System Driver (clfs.sys) Privilege Escalation

Secure your products with top-tier expert knowledge and advanced Penetration Testing (CREST Approved)

Let's collaborate to build and maintain secure, trustworthy products

We transform threats into trust by integrating advanced tech and expertise in product security. Our approach encompasses Security by Design, rigorous security assurance and penetration testing, and compliance through expert documentation, from design to post-market. We offer CREST-approved pen testing in EMEA, upholding top security standards.

CREST Approved in EMEA

A privilege escalation vulnerability exists in the clfs.sys driver which comes installed by default on Windows 10 21H2, Windows 11 21H2 and Windows Server 20348 operating systems. This Metasploit module exploit makes use to two different kinds of specially crafted .blf files.   Exploit Files ≈ Packet Storm 

 

More To Explore

Elevating Teleco Security for the Digital Future

Elevating Teleco Security for the Digital Future In the digital era, the telecommunication sector is at the forefront, driven by groundbreaking advancements like 5G and