73 matches found
CVE-2026-45648
Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network...
CVE-2026-3238
A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the...
MAL-2026-1019 Malicious code in spark-audit-notify (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1c527925d1e7cb4055b6c154326cd54a713ad543349c2b3b6f8ab8f0d75e8cbe During installation, host identification details including AD domain are exfiltrated through a series of functions obfuscating this behavior. --- Category:...
CVE-2026-24936
When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...
CVE-2026-24936
When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...
EUVD-2026-5316
When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...
EUVD-2019-18936
Malware in sbrugna...
EUVD-2018-8651
Malware in sbrugna...
EUVD-2014-7986
Malware in sbrugna...
EUVD-2019-5959
Malware in sbrugna...
CLSA-2025-1758824905 Fix CVE(s): CVE-2022-2031, CVE-2022-32744
SECURITY UPDATE: disable kpasswd port to mitigate vulnerabilities - debian/patches/CVE-2022-2031CVE-2022-32744.patch: add kpasswd port = 0 to disable kpasswd service as a workaround for CVE-2022-32744 and CVE-2022-2031 - kpasswd is not a critical protocol for AD DC in most installations -...
Microsoft Active Directory Domain Services 访问控制错误漏洞
Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA that is used to manage and organize resources, users, computers, and other security objects in a network. An access control error vulnerability exists in Microsoft Active Directory Domain Services. An...
About Remote Code Execution – Veeam Backup & Replication (CVE-2025-23120) vulnerability
About Remote Code Execution - Veeam Backup & Replication CVE-2025-23120 vulnerability. Veeam B&R is a client-server software solution for centralized backup of virtual machines in VMware vSphere and Microsoft Hyper-V environments. A deserialization flaw CWE-502 lets an attacker run arbitrary code...
PT-2025-1114
Name of the Vulnerable Software and Affected Versions Active Directory Domain Services affected versions not specified Description A critical elevation-of-privilege vulnerability in Active Directory Domain Services allows attackers to gain SYSTEM-level access. The vulnerability is related to erro...
CVE-2024-8068
CVE-2024-8068 affects Citrix Session Recording. According to Citrix’s security bulletin CTX691941, affected versions include Current Release prior to hotfix 2407 (24.5.200.8) and LTSR releases: 1912 LTSR before CU9 (19.12.9100.6), 2203 LTSR before CU5 (22.03.5100.11), and 2402 LTSR before CU1 (24...
AD CS Certificate Template Management
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...
Microsoft Active Directory Domain Services Security Vulnerability
Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA for managing and organizing resources, users, computers, and other security objects in a network. A security vulnerability exists in Microsoft Active Directory Domain Services. An attacker could exploit the...
Microsoft Windows Multiple Vulnerabilities (KB5031354)
This host is missing a critical security update according to Microsoft KB5031354 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Active Directory Domain Services Security Vulnerability
Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA that is used to manage and organize resources, users, computers, and other security objects in a network. A security vulnerability exists in Microsoft Active Directory Domain Services. An attacker could...
LDAP Login Scanner
This module attempts to login to the LDAP service. Module Options msf use auxiliary/scanner/ldap/ldaplogin msf auxiliaryldaplogin show actions ...actions... msf auxiliaryldaplogin set ACTION msf auxiliaryldaplogin show options ...show and set options... msf auxiliaryldaplogin run This module...