Microsoft Windows WLDP/Scriptlet CLSID UMCI Bypass

The enlightened lockdown policy check for COM Class instantiation can be bypassed in Scriptlet hosts leading to arbitrary code execution on a system with UMCI enabled (e.g. Device Guard).

MD5 | 9f26a70091ba091d126dd62e22de0746

Download

Source: packetstormsecurity.com