This repository contains the descriptions and proof-of-concept exploits of 20 issues with low or unclear security impact found in the Windows Registry. They were reported to Microsoft between November 2023 and January 2024. Six of them were fixed by the vendor in the March 2024 Patch Tuesday, while the other fourteen were closed as WontFix/vNext. The bugs were identified during my registry research in 2022-2024, alongside the 39 vulnerabilities filed in the Project Zero bug tracker with the 90-day deadline.
For more information about the research, please see the blog post series starting with The Windows Registry Adventure #1: Introduction and research results, as well as the Exploring the Windows Registry as a powerful LPE attack surface presentation from BlueHat Redmond 2023. At the time of this writing, further talks about the registry are planned this year at OffensiveCon, CONFidence and REcon.
The issues are summarized in the table below: