Let me store that for you

This blog post details CVE-2020-16885, a Hyper‑V STORVSP kernel-mode flaw that permitted unprivileged users to create files under C:\Windows\System32 via NtCreateFile; the author demonstrates a PoC chaining this arbitrary write to DLL side‑loading to execute code as NT AUTHORITY\SYSTEM, shows detection/mitigation (KB4580346), and provides step-by-step reproduction and payload creation.