afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."
| Product | CPU Architecture | Version | Update | Tested |
|---|---|---|---|---|
| Windows Server 2003 | SP2 | ✔ | ||
| Windows Xp | SP2 | |||
| Windows Xp | SP3 |
Test system Windows Server 2003 SP2 x86
MSF uses it directly to use this
use exploit/windows/local/ms11_080_afdjoinleaf