when I finally finish editing this goddamn hellscape of a chapter, I’m going to reward myself by booting up wobbledogs, breeding the most fucked up creature imaginable, and naming it PENIS GEORGE.

Concealed Position - Bring Your Own Print Driver Privilege Escalation Tool. Concealed Position is...

Concealed Position - Bring Your Own Print Driver Privilege Escalation Tool. Concealed Position is a local #privilege escalation #attack against #Windows using the concept of "Bring Your Own Vulnerability". Specifically, Concealed Position (CP) uses the as designed package point and print logic in Windows that allows a low privilege user to stage and install printer drivers. CP specifically installs drivers with known vulnerabilities which are then exploited to escalate to SYSTEM. Concealed Position was first presented at DEF CON 29. What exploits are available? Concealed Position offers four exploits - all with equally dumb names: 1. ACIDDAMAGE - CVE-2021-35449 - Lexmark Universal Print Driver LPE 2. RADIANTDAMAGE - CVE-2021-38085 - Canon TR150 Print Driver LPE 3. POISONDAMAGE - CVE-2019-19363 - Ricoh PCL6 Print Driver LPE 4. SLASHINGDAMAGE - CVE-2020-1300 - Windows Print Spooler LPE https://github.com/jacob-baines/concealed_position

GitHub - jacob-baines/concealed_position: Bring your own print driver privilege escalation tool - GitHub Bring your own print driver privilege escalation tool - GitHub - jacob-baines/concealed_position: Bring your own print driver privilege escalation tool