Nightmare Eclipse: MiniPlasma, a powerful LPE

Friday, 15 May 2026

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512

This one is accidental, I didn't even think cldflt.sys had that vulnerability. Turns out CVE-2020-17103 patch is just not present at all ?

The new PoC was tested against fully patched Windows 11 and Windows Server 2025 and managed to flawlessly spawn a SYSTEM shell.

https://github.com/Nightmare-Eclipse/MiniPlasma

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCaggLWQAKCRDFFoRCS0/S

bHKSAP4/bkKYCDTKZvq5WoUsWKuYgWBvlfun8KYJtNgYREezVAEAj8cg30Pjcjcu

REzr4eniahPoc6bleEEos0PwVOUa5AA=

=oct9

-----END PGP SIGNATURE-----

John16 May 2026 at 08:41
This comment has been removed by the author.
ReplyDelete
Replies
UncannyDolphin16 May 2026 at 15:31
Bro I’ve never really analyzed Microsoft drivers but third party drivers are full of vulnerabilities and Microsoft doesnt give a fuck. One driver I found even has a public cve from 2025 assigned and it is not even blacklisted. Vulnerability still there, driver still working like.
ReplyDelete
Replies
Nossy16 May 2026 at 22:48
Thanks for posting!
ReplyDelete
Replies
Nossy24 May 2026 at 20:50
Is this the same level as nt authority? How does it differ from advnacedrun by nirsoft
ReplyDelete
Replies
Nossy2 June 2026 at 22:53
https://web.archive.org/web/20260516071853/https://github.com/Nightmare-Eclipse/MiniPlasma

ReplyDelete
Replies

Nightmare Eclipse