CVEs-PoC/2017/CVE-2017-11852.md

### [CVE-2017-11852](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11852)
![](https://img.shields.io/static/v1?label=Product&message=GDI&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=Windows%207%20SP1%20and%20Windows%20Server%202008%20SP2%20and%20R2%20SP1.%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Information%20Disclosure&color=brightgreen)

### Description

Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to log on to an affected system and run a specially crafted application to compromise the user's system, due improperly disclosing kernel memory addresses, aka "Windows GDI Information Disclosure Vulnerability".

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ksyang-hj/ksyang-hj
- https://github.com/ksyang/ksyang