Microsoft Windows UPnP Device Host Local Privilege Escalation Exploit

This module exploits two vulnerabilities (CVE-2019-1405 & CVE-2019-1322) in order to get SYSTEM privileges. The first one "UPnP Device Host" allows us to get SERVICE privileges. The second one "Update Orchestrator Service" allows us to escalate from SERVICE to SYSTEM.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2019-1405
Released Date: 
Sunday, December 29, 2019 - 18:00