Pwnie Awards 2017

2020 Nomination for Best Privilege Escalation Bug

Windows ALPC Elevation of Privilege Vulnerability

Taviso

A vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system.

[cftool exploit](https://googleprojectzero.blogspot.com/2019/08/down-rabbit-hole.html], CVE-2019-1162