Lucene search
K

604 matches found

Tenable Nessus
Tenable Nessus
added 2020/09/18 12:0 a.m.180 views

Microsoft Netlogon Elevation of Privilege (Zerologon) (Remote)

Binary data netlogonzerologonCVE-2020-1472.nbin...

10CVSS8.7AI score0.99512EPSS
Exploits75References8
Samba
Samba
added 2020/09/18 12:0 a.m.778 views

Unauthenticated domain takeover via netlogon ("ZeroLogon")

Description The following applies to Samba used as domain controller only most seriously the Active Directory DC, but also the classic/NT4-style DC. Installations running Samba as a file server only are not directly affected by this flaw, though they may need configuration changes to continue to...

10CVSS7.1AI score0.99512EPSS
Exploits75
OpenVAS
OpenVAS
added 2020/09/18 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-4510-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.99512EPSS
Exploits75References4
Ubuntu
Ubuntu
added 2020/09/17 12:31 p.m.179 views

USN-4510-2: Samba vulnerability

USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue t...

10CVSS7.8AI score0.99512EPSS
Exploits75
OSV
OSV
added 2020/09/17 12:31 p.m.4 views

USN-4510-2 samba vulnerability

USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue t...

10CVSS6.9AI score0.99512EPSS
Exploits75References2
Ubuntu
Ubuntu
added 2020/09/17 11:3 a.m.132 views

USN-4510-1: Samba vulnerability

Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue to forge an authentication token and steal the credentials of the domain admin. This update fixes the issue by changing the "server schanne...

10CVSS7.8AI score0.99512EPSS
Exploits75
OSV
OSV
added 2020/09/17 11:3 a.m.1 views

USN-4510-1 samba vulnerability

Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue to forge an authentication token and steal the credentials of the domain admin. This update fixes the issue by changing the "server schanne...

10CVSS6.8AI score0.99512EPSS
Exploits75References2
RedhatCVE
RedhatCVE
added 2020/09/17 6:30 a.m.93 views

CVE-2020-1472

A flaw was found in the Microsoft Windows Netlogon Remote Protocol MS-NRPC, where it reuses a known, static, zero-value initialization vector IV in AES-CFB8 mode. This flaw allows an unauthenticated attacker to impersonate a domain-joined computer, including a domain controller, and possibly obta...

10CVSS3.3AI score0.99512EPSS
Exploits75References6
CISA
CISA
added 2020/09/17 12:0 a.m.78 views

CERT/CC Releases Information on Critical Vulnerability in Microsoft Windows Netlogon Remote Protocol

The CERT Coordination Center CERT/CC has released information on CVE-2020-1472, a vulnerability affecting Microsoft Windows Netlogon Remote Protocol. An unauthenticated attacker could exploit this vulnerability to obtain Active Directory domain administrator access. Although Microsoft provided...

9.3CVSS2.4AI score0.99512EPSS
Exploits75References3
Tenable Nessus
Tenable Nessus
added 2020/09/17 12:0 a.m.214 views

Ubuntu 16.04 LTS / 18.04 LTS : Samba vulnerability (USN-4510-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4510-1 advisory. Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use thi...

10CVSS7.8AI score0.99512EPSS
Exploits75References2
GithubExploit
GithubExploit
added 2020/09/16 2:25 p.m.153 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 9:54 a.m.173 views

Exploit for CVE-2020-1472

CVE-2020-1472 POC Requires the latest impacket from GitHubh...

10CVSS8.1AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 9:22 a.m.132 views

Exploit for CVE-2020-1472

CVE-2020-1472 Netlogon Remote Protocol Call MS-NRPC Privileg...

10CVSS8.2AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 7:25 a.m.242 views

Exploit for CVE-2020-1472

!Pythonpython-shield CVE-2020-1472 CVE-2020-1472 - Zero...

10CVSS8.1AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 3:57 a.m.180 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 3:54 a.m.471 views

Exploit for CVE-2020-1472

CVE-2020-1472 POC Requires the latest impacket from GitHubh...

10CVSS8.1AI score0.99512EPSS
Exploits75
CERT
CERT
added 2020/09/16 12:0 a.m.1145 views

Microsoft Windows Netlogon Remote Protocol (MS-NRPC) uses insecure AES-CFB8 initialization vector

Overview The Microsoft Windows Netlogon Remote Protocol MS-NRPC reuses a known, static, zero-value initialization vector IV in AES-CFB8 mode. This allows an unauthenticated attacker to impersonate a domain-joined computer, including a domain controller, and potentially obtain domain administrator...

10CVSS8.6AI score0.99512EPSS
Exploits75References14
UbuntuCve
UbuntuCve
added 2020/09/16 12:0 a.m.84 views

CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

10CVSS7.1AI score0.99512EPSS
Exploits75References6
OSV
OSV
added 2020/09/16 12:0 a.m.3 views

UBUNTU-CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

10CVSS7AI score0.99512EPSS
Exploits75References7
Qualys Blog
Qualys Blog
added 2020/09/15 7:55 p.m.1458 views

Microsoft Netlogon Vulnerability (CVE-2020-1472 – Zerologon) – Automatically Discover, Prioritize and Remediate Using Qualys VMDR®

Update October 1, 2020: Microsoft has added step-by-step Zerologon patching instructions because the original instructions "proved confusing to users and may have caused issues with other business operations." Update October 1, 2020: Qualys released new QID 91680 to add a remote unauthenticated...

9.3CVSS0.1AI score0.99512EPSS
Exploits75
Rows per page
Query Builder