1851 matches found
samba: SMB1 client connections can be downgraded to plaintext authentication
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required...
Common Cloud Misconfigurations Exploited in Minutes, Report
Poorly configured cloud services can be exploit by threat actors in minutes and sometimes in under 30 seconds. Attacks include network intrusion, data theft and ransomware infections, researchers have found. Researchers at Palo Alto Networks’ Unit 42 used a honeypot infrastructure of 320 nodes...
Dell Technologies Dell PowerScale OneFS 安全漏洞
Dell PowerScale OneFS is the PowerScale OneFS operating system that provides horizontal scaling NAS. A security vulnerability exists in Dell PowerScale OneFS that stems from Dell PowerScale OneFS containing asynchronous access to shared data in the context of multi-threaded SMB CA processing. An...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
PoC exploit for CVE-2020-0796 - SMBv3 RCE. The target product/service is SMB. The vulnerability class/vector is RCE Remote Code Execution. The probable entry point is the scanner.py script. Notable dependencies/tooling include the netaddr library. The execution context is a Python script invoked...
CVE-2021-36960
Windows SMB Information Disclosure Vulnerability...
Microsoft Windows SMB Client信息泄露漏洞
Microsoft Windows SMB Client is a Microsoft application. An SMB Client. An information disclosure vulnerability exists in microsoft Windows SMB. The following products and versions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10...
PT-2021-6296 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to the implementation of the Windows SMB protocol in the Microsoft Windows operating system, which is associated with information disclosure. Exploitation of...
PT-2021-6320 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the implementation of the Windows SMB network protocol in the Microsoft Windows operating system, which is associated with information disclosure. Exploitation of th...
The vulnerability of the SMBv2 component of the Windows operating system, allowing a hacker to execute arbitrary code
The vulnerability of the SMBv2 component of the Windows operating system is related to errors in code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the SMBv2 component of the Windows operating system allows a perpetrator to execute arbitrary code or cause a service failure.
The vulnerability of the SMBv2 component of the Windows operating system is related to errors in code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service interruptions...
samba bug fix and enhancement update
An update is available for samba. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Samba is an open-source implementation of the Server Message Block SMB protocol...
The vulnerability of the MS-EFSRPC protocol in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the MS-EFSRPC protocol in Windows operating systems is related to errors in processing SMB requests during authentication procedures. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...
MEAC affected by Windows SMBv1 vulnerability
Microsoft disclosed a critical security vulnerability in the Microsoft Server Message Block 1.0 SMBv1 back in 2017. A successful exploitation of this vulnerability could lead to remote code execution with administrator privileges...
impacket1472
This is a Python library called Impacket, which provides a collection of classes for working with network protocols. The library is focused on providing low-level programmatic access to the packets and for some protocols e.g. SMB1-3 and MSRPC the protocol implementation itself. The library includ...
CVE-2021-33783
Windows SMB Information Disclosure Vulnerability...
Microsoft Windows SMB Client 信息泄露漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA Microsoft Windows is a set of operating systems for personal devices Microsoft Windows Server is a set of server operating systems. An information disclosure vulnerability exists in SMB in Microsoft...
PT-2021-5214 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a Windows SMB information disclosure vulnerability. It allows a remote attacker to disclose protected information. The vulnerability can be exploited to obtain...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
This is a proof-of-concept POC exploit for CVE-2020-0796, a vulnerability in the SMBv3 protocol. The exploit is implemented in Python and uses the Impacket library to interact with the SMB protocol. The exploit targets the SMBv3 protocol's signing requirement, which can be bypassed to allow for...
MS17-010
This repository is for public analysis of the MS17-010 vulnerability. The repository contains various PoCs Proof of Concepts and exploits for the vulnerability, which is a remote code execution vulnerability in the Windows SMBv1 protocol. The vulnerability is caused by a buffer overflow in the...
Apple macOS SMB server create file request uninitialized memory disclosure
Summary A use of uninitialized data vulnerability exists in the SMB Server Apple macOS 11.2. A specially crafted SMB packet can cause uninitialized data to end up in server reply which can leak sensitive information. This vulnerability can be triggered by sending a malicious packet to the...