CVE-2020-25719

A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result cou...

CVE-2022-0336

A logic flaw in the Samba Active Directory Domain Controller leads to a denial of service and service impersonation. This flaw allows an attacker with the ability to write to an account to perform a denial of service attack or service impersonation by adding an SPN that matches an existing servic...

Kerbrute - An Script To Perform Kerberos Bruteforcing By Using Impacket

An script to perform kerberos bruteforcing by using the Impacket library. When is executed, as input it receives a user or list of users and a password or list of password. Then is performs a brute-force attack to enumerate: Valid username/passwords pairs Valid usernames Usernames without...

BloodyAD - An Active Directory Privilege Escalation Framework

BloodyAD is an Active Directory Privilege Escalation Framework, it can be used manually using bloodyAD.py or automatically by combining pathgen.py and autobloody.py. This framework supports NTLM with password or NTLM hashes and Kerberos authentication and binds to LDAP/LDAPS/SAMR services of a...

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords including administrative users and privileged service accounts (eg Domain Controllers).

...

January 17, 2022—KB5010790 (OS Build 14393.4889) Out-of-band

January 17, 2022—KB5010790 OS Build 14393.4889 Out-of-band 11/19/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 1607, see its update history page. Highlights Updat...

January 17, 2022—KB5010796 (OS Build 20348.473) Out-of-band

January 17, 2022—KB5010796 OS Build 20348.473 Out-of-band For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to...

KB5010794: Out-of-band update for Windows 8.1 and Windows Server 2012 R2: January 17, 2022

KB5010794: Out-of-band update for Windows 8.1 and Windows Server 2012 R2: January 17, 2022 Summary This update resolves the following issues: Virtual machines VMs located on a server that has Unified Extensible Firmware Interface UEFI enabled fail to start after installing the January 11, 2022...

[updated] You can update now: Microsoft patches 97 bugs including 6 zero-days and a wormable one

How time flies sometimes. Microsoft yesterday released the first patch Tuesday security updates of the year 2022. The update includes fixes for six zero-day vulnerabilities and a total of 97 bugs. This includes two Remote Code Execution RCE vulnerabilities affecting open source libraries. None of...

January 11, 2022—KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

January 11, 2022—KB5009543 OS Builds 19042.1466, 19043.1466, and 19044.1466 EXPIRATION NOTICEIMPORTAN T As of 9/12/2023, this KB is only available from Windows Update. It is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices ...

January 11, 2022—KB5009555 (OS Build 20348.469)

January 11, 2022—KB5009555 OS Build 20348.469 Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Windows...

January 11, 2022—KB5009546 (OS Build 14393.4886) - EXPIRED

January 11, 2022—KB5009546 OS Build 14393.4886 - EXPIRED EXPIRATION NOTICE As of 9/12/2023, KB5009546 is no longer available from Windows Update, the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security quality update. --- Caution: ...

January 11, 2022—KB5009624 (Monthly Rollup)

January 11, 2022—KB5009624 Monthly Rollup Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Windows Serv...

January 11, 2022—KB5009621 (Security-only update)

January 11, 2022—KB5009621 Security-only update Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Window...

January 11, 2022—KB5009619 (Security-only update)

January 11, 2022—KB5009619 Security-only update Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Window...

January 11, 2022—KB5009610 (Monthly Rollup)

January 11, 2022—KB5009610 Monthly Rollup Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Windows Serv...

January 11, 2022—KB5009595 (Security-only update)

January 11, 2022—KB5009595 Security-only update Caution: If you intend to install this update on a domain controller DC, we highly recommend that you install the February 8, 2022 security update instead. The February security update addresses a known issue that might cause some versions of Window...

LACheck - Multithreaded C# .NET Assembly Local Administrative Privilege Enumeration

Multithreaded C .NET Assembly Local Administrative Privilege Enumeration Arguments domain controller to query if not ran on a domain-joined host /domain - specify domain name if not ran on a domain-joined host /edr - check host for EDR requires smb, rpc, or winrm /logons - return logged on users ...

The vulnerability of the Active Directory Domain Controller component of the Samba networking software allows a perpetrator to execute arbitrary code.

The vulnerability of the Active Directory Domain Controller component in the Samba networking software package arises due to a buffer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets

A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result cou...