Microsoft Windows WLDP/Scriptlet CLSID UMCI Bypass
Posted by deepcore on November 16, 2017 – 8:33 pm
The enlightened lockdown policy check for COM Class instantiation can be bypassed in Scriptlet hosts leading to arbitrary code execution on a system with UMCI enabled (e.g. Device Guard).
Post a reply
You must be logged in to post a comment.