This is a great little exploit to use. Works on Windows 7, Windows 2008 SP1 and all the way back to Windows XP. This was released around November 2009 and Microsoft released the patch around Feb 2010 (Ms10-015). Most AV scanners pick this up now, but did have a good few months of fun with this one.

Simply upload the VDM .exe and .dll file to the target and double click. This will take you from a standard user and give you a System shell.

Social Sharing