ffensive-playbook

HackTheBox — Writeups Collection A collection of HackTheBox m...

CVE-2020-0761

A remote code execution vulnerability exists when Active Directory integrated DNS ADIDNS mishandles objects in memory. An authenticated attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account To exploit the vulnerability, an...

CVE-2020-0856

Technical details for CVE-2020-0856 are not publicly provided in the supplied documents. Monitor for updates from official advisories for affected ADIDNS information disclosure specifics.

CVE-2020-0761

CVE-2020-0761 is a remote code execution vulnerability in Active Directory integrated DNS (ADIDNS) where in-memory objects are mishandled. An authenticated attacker could send crafted requests to an ADIDNS server and execute arbitrary code with SYSTEM privileges. The root cause is described as im...

CVE-2020-0718

CVE-2020-0718: Active Directory integrated DNS (ADIDNS) RCE is a remote code execution vulnerability that occurs when ADIDNS mishandles objects in memory. An authenticated attacker could send malicious requests to an ADIDNS server, potentially executing code in the Local System context. The conne...

Microsoft Windows Multiple Vulnerabilities (KB4577015)

This host is missing a critical security update according to Microsoft KB4577015 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Active Directory Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Active Directory integrated DNS ADIDNS mishandles objects in memory. An authenticated attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account To exploit the vulnerability, an...

Active Directory Information Disclosure Vulnerability

An information disclosure vulnerability exists when Active Directory integrated DNS ADIDNS mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system. To exploit this condition, an...

Active Directory Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Active Directory integrated DNS ADIDNS mishandles objects in memory. An authenticated attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account To exploit the vulnerability, an...

iCULeak - Tool To Find And Extract Credentials From Phone Configuration Files Hosted On Cisco CUCM

Tool to find and extract credentials from phone configuration files in environments managed by Cisco's CUCM Call Manager. When using Cisco's CUCM Call Manager, phone configuration files are stored on a TFTP server. These phone configuration files quite frequently contain sensitive data, including...