Lucene search
K

14 matches found

The Hacker News
The Hacker News
added 2024/09/10 3:48 p.m.43 views

CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub

The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses SMBs in Europe, Asia, Africa, and South America, while also likely working as an affiliate for RansomHub. "CosmicBeetle replaced its previously...

10CVSS7.4AI score0.99512EPSS
Exploits153
Kitploit
Kitploit
added 2022/09/06 12:30 p.m.65 views

noPac - Exploiting CVE-2021-42278 And CVE-2021-42287 To Impersonate DA From Standard Domain User

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Changed from sam-the-admin. Usage SAM THE ADMIN CVE-2021-42278 + CVE-2021-42287 chain positional arguments: domain/username:password Account used to authenticate to DC. optional arguments: -h, --help show thi...

7.5CVSS8.8AI score0.74265EPSS
Exploits10References2
Check Point Advisories
Check Point Advisories
added 2022/04/27 12:0 a.m.10 views

Microsoft Windows Active Directory Privilege Escalation Multiple Vulnerabilities (CVE-2021-42278; CVE-2021-42287)

Multiple Privilege Escalation vulnerabilities exists in Microsoft Windows Active Directory. Successful exploitation of this vulnerability could allow a remote attacker to easily elevate their privilege to that of a domain admin once he compromise a regular user in the domain...

6.5CVSS3.9AI score0.74265EPSS
Exploits10
ThreatPost
ThreatPost
added 2021/12/21 4:46 p.m.96 views

Two Active Directory Bugs Lead to Easy Windows Domain Takeover

A proof-of-concept tool has been published that leverages two Windows Active Directory bugs fixed last month that, when chained, can allow easy Windows domain takeover. In a Monday alert, Microsoft urged organizations to immediately patch the pair of bugs, tracked as CVE-2021-42287 and...

8.8CVSS9AI score0.74265EPSS
Exploits10References20
GithubExploit
GithubExploit
added 2021/12/13 11:15 p.m.450 views

Exploit for CVE-2021-42278

Pachine Python implementation for CVE-2021-42278 Active Dire...

8.8CVSS8.7AI score0.74265EPSS
Exploits10
Circl
Circl
added 2021/12/11 7:44 p.m.7 views

CVE-2021-42278

creationtimestamp| type| source ---|---|--- 2021-12-11 19:44:35+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/952 2021-12-11 20:46:13+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1328 2021-12-12 14:54:29+00:00| published-proof-of-concept| https://t.me/m1swarr1or/29...

7.5CVSS7.5AI score0.70207EPSS
Exploits9References64
GithubExploit
GithubExploit
added 2021/12/11 3:10 p.m.543 views

Exploit for CVE-2021-42278

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA f...

8.8CVSS8.4AI score0.74265EPSS
Exploits10
GithubExploit
GithubExploit
added 2021/12/11 3:10 p.m.6 views

Exploit for CVE-2021-42278

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA f...

8.8CVSS7AI score0.74265EPSS
Exploits10
NVD
NVD
added 2021/11/10 1:19 a.m.21 views

CVE-2021-42278

Active Directory Domain Services Elevation of Privilege Vulnerability...

7.5CVSS0.70207EPSS
Exploits9References2
CVE
CVE
added 2021/11/10 12:47 a.m.1728 views

CVE-2021-42278

CVE-2021-42278 is an Active Directory Domain Services privilege-escalation vulnerability in Microsoft Windows. The connected documents describe exploits/frameworks (e.g., Pachine, sam-the-admin, noPac) that impersonate a Domain Administrator from a standard domain user using Kerberos delegation t...

7.5CVSS8.2AI score0.70207EPSS
In wildExploits9References2Affected Software7
OpenVAS
OpenVAS
added 2021/11/10 12:0 a.m.36 views

Microsoft Windows Multiple Vulnerabilities (KB5007192)

This host is missing a critical security update according to Microsoft KB5007192 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.74265EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.232 views

KB5007192: Windows 10 Version 1607 and Windows Server 2016 Security Update (November 2021)

The remote Windows host is missing security update 5007192. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-38631, CVE-2021-38665, CVE-2021-41371 - A remote code...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References25
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.84 views

KB5007245: Windows Server 2012 Security Update (November 2021)

The remote Windows host is missing security update 5007245 or cumulative update 5007245. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41366, CVE-2021-41367, CVE-2021-41370,...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References18
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.126 views

KB5007233: Windows 7 and Windows Server 2008 R2 Security Update (November 2021)

The remote Windows host is missing security update 5007233 or cumulative update 5007236. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-38631, CVE-2021-38665,...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References16
Rows per page
Query Builder