Windows Kerberos Redirected Logon Buffer Privilege Escalation

On Windows, the buffer for redirected logon context does not protect against spoofing resulting in arbitrary code execution in the LSA leading to local elevation of privilege.