Skip to main content

Listen to this Post

Featured Image

LinkedIn

Top Content

People

Learning

Jobs

Games

Sign in

Join now

Juan Sacco’s Post

View profile for Juan Sacco

Juan Sacco

Exploit Writer, Reverse Engineer, OSCP, OSCE, Advanced Corelan, IDA Pro Advanced training. Start-up owner of Exploit Pack: exploitpack.com

8h

One more Windows Kernel 0-day! 🥳 This time for a driver using WRMSR.

The CPU has special registers called Model Specific Registers (MSRs) that control low-level system behavior. Normally, only the Windows kernel can change them using a CPU instruction called WRMSR.

A WRMSR exploit happens when a vulnerable driver or virtualization layer mistakenly allows normal programs to write to these registers. If attackers get that access, they can tamper with how the CPU enforces protections, crash the system, or even escalate privileges to SYSTEM for example, by swapping security tokens and impersonating higher-privileged processes, like shown here.

TL;DR: WRMSR it’s a flaw where a driver opens the door to hardware instructions that should never be reachable from user space and attackers can use it to take over Windows machines.

Affected driver: https://lnkd.in/e9pGwD5k
Get this and more exploits from https://exploitpack.com

No alternative text description for this image

252

6 Comments

Like

Comment

Peyton Hawk, graphic

Peyton Hawk

Self-taught systems programmer | Reverse engineer | Security researcher

4h

Nice

Like

Reply

Mahmoud NourEldin, graphic

Mahmoud NourEldin

Reverse Engineer & Malware Analyst, Interesting in Windows Kernel Exploitation

6h

Impressive 🥰

Like

Reply

Valton Tahiri, graphic

Valton Tahiri

Cyber Security Engineer | Cybee.ai

7h

Nice one!

Like

Reply

Elad Eyni, graphic

Elad Eyni

Co-Founder & Cyber Security Engineer & Research at Cypros LTD

3h

You already administrator no?

Like

Reply

1 Reaction

Vladimir Tokarev, graphic

Vladimir Tokarev

Senior Vulnerability Researcher | Speaker @ BlackHat USA (2023, 2024) / Defcon Recon Village / RSA / Firecon | Cyber Security Researcher | Cloud Researcher | OS Internals Researcher | 11+ years of experience 🧙♂️

2h

Cool stuff bro ! 😎

Like

Reply

See more comments

To view or add a comment, sign in

Juan Sacco

4,971 followers

374 Posts

View Profile Follow

Explore content categories

Career

Productivity

Finance

Soft Skills & Emotional Intelligence

Project Management

Education

Show more

LinkedIn

© 2025

About

Accessibility

User Agreement

Privacy Policy

Cookie Policy

Copyright Policy

Brand Policy

Guest Controls

Community Guidelines

Sign in to view more content

Create your free account or sign in to continue your search

Sign in

or

New to LinkedIn? Join now

By clicking Continue to join or sign in, you agree to LinkedIn’s User Agreement, Privacy Policy, and Cookie Policy.

🎯Let’s Practice For Free:

IT/Security Reporter URL:

Reported By: Juan Sacco – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow UndercodeTesting & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin | 🦋BlueSky