Lucene search
K

610 matches found

ATTACKERKB
ATTACKERKB
added 2023/06/20 12:15 p.m.3 views

CVE-2023-35854

Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they have "found...

9.8CVSS5.5AI score0.05979EPSS
Exploits1References3
OSV
OSV
added 2023/06/20 12:15 p.m.5 views

CVE-2023-35854

Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they have "found...

9.8CVSS7.3AI score0.05979EPSS
Exploits1References2
NVD
NVD
added 2023/06/20 12:15 p.m.23 views

CVE-2023-35854

Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they have "found...

9.8CVSS9.8AI score0.05979EPSS
Exploits1References2
Prion
Prion
added 2023/06/20 12:15 p.m.41 views

Authentication flaw

DISPUTED Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they ha...

7.5CVSS9.6AI score0.05979EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/06/20 12:0 a.m.121 views

CVE-2023-35854

The CVE-2023-35854 vulnerability affects Zoho ManageEngine ADSelfService Plus up to and including version 6113, via an authentication bypass in a critical function that can enable an attacker to steal a domain controller session token and impersonate a domain administrator. Affected component: au...

9.8CVSS9.6AI score0.05979EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/20 12:0 a.m.8 views

PT-2023-3487 · Zoho · Zoho Manageengine Adselfservice Plus

Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine ADSelfService Plus versions through 6113 Description: The issue is related to an authentication bypass in a critical function, which can be exploited to steal the domain controller session token for identity spoofing. This...

10CVSS7.2AI score0.05979EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2023/06/20 12:0 a.m.14 views

CVE-2023-35854

Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they have "found...

7.3AI score0.05979EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/06/20 12:0 a.m.22 views

CVE-2023-35854

Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal the domain controller session token for identity spoofing, thereby achieving the privileges of the domain controller administrator. NOTE: the vendor's perspective is that they have "found...

9.9AI score0.05979EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
added 2023/05/24 12:0 a.m.37 views

Microsoft Windows Active Directory Certificate Services Improper Authorization Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of Microsoft Windows Active Directory Certificate Services. Authentication is required to exploit this vulnerability. The specific flaw exists within the issuance of certificates. By including...

8.4CVSS6.3AI score0.01622EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 11:5 a.m.4 views

OESA-2023-1232 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.CVE-2023-0922...

5.9CVSS7AI score0.00484EPSS
Exploits0References2
HackRead
HackRead
added 2023/04/05 9:12 a.m.20 views

New Strain of Rorschach Ransomware Targeting US- Firms

By Deeba Ahmed Rorschach ransomware boasts advanced encryption technology and can spread automatically on the machine if executed on a domain controller. This is a post from HackRead.com Read the original post: New Strain of Rorschach Ransomware Targeting US- Firms...

6.7AI score
Exploits0
OSV
OSV
added 2023/04/03 11:15 p.m.6 views

AZL-26697 CVE-2023-0614 affecting package samba 4.12.5-7

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC...

6.5CVSS6.6AI score0.00567EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.2 views

samba 安全漏洞

Samba is the standard Windows interoperability program suite for Linux and Unix. A security vulnerability exists in samba that stems from the AD DC administration tool, samba-tool, which sends passwords in clear text...

5.9CVSS6.7AI score0.00484EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.8 views

PT-2023-2253 · Samba +6 · Samba +6

Name of the Vulnerable Software and Affected Versions: Samba affected versions not specified Description: The issue is related to the Samba AD DC administration tool sending new or reset passwords over a signed-only connection when operating against a remote LDAP server. This could allow a remote...

9.8CVSS6.4AI score0.74265EPSS
Exploits14References156
Kitploit
Kitploit
added 2023/03/19 11:30 a.m.111 views

FindUncommonShares - A Python Equivalent Of PowerView's Invoke-ShareFinder.ps1 Allowing To Quickly Find Uncommon Shares In Vast Windows Domains

The script FindUncommonShares.py is a Python equivalent of PowerView's Invoke-ShareFinder.ps1 allowing to quickly find uncommon shares in vast Windows Active Directory Domains. Features Only requires a low privileges domain user account. Automatically gets the list of all computers from the domai...

7.5AI score
Exploits0References6
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.25 views

Debian: Security Advisory (DLA-1539-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.8AI score0.04302EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2023/02/21 7:29 p.m.32 views

K15642: Samba vulnerability CVE-2013-4476

Security Advisory Description Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access to the local...

1.2CVSS6.9AI score0.00435EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.5 views

SUSE CVE-2007-4572

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...

9.3CVSS7.6AI score0.05888EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.3 views

SUSE CVE-2007-6015

Stack-based buffer overflow in the sendmailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the "domain logons" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string following an offset username in a SAMLOGON...

9.3CVSS8.3AI score0.27482EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:9 a.m.3 views

SUSE CVE-2016-0771

The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service out-of-bounds read or possibly obtain sensitive information from process memory by...

5.9CVSS6.7AI score0.02762EPSS
Exploits0References4
Rows per page
Query Builder