This module exploits a null pointer dereference in win32k.sys by abusing of xxxSendMessageTimeout function. The TrackPopupMenu API function is used to trigger the vulnerability.
CVE Link
Exploit Type - Old
Exploits/Local
Exploit Platform
Product Name