Original Poc sent to MSRC. Assigned to CVE-2020-0683 - Windows Installer Elevation of Privilege

https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0683

Source code for Visual Studio C++ 2017

Please read the PDF that describes all the findings and steps to reproduce.

Inside "bin_MsiExploit" you'll find the exploit (exe) to execute.

DEMO

Buy me a beer if you like ;-)