Lucene search
K

4 matches found

NVD
NVD
added 2024/05/07 5:15 p.m.27 views

CVE-2024-29209

A medium severity vulnerability has been identified in the update mechanism of the Phish Alert Button for Outlook, which could allow an attacker to remotely execute arbitrary code on the host machine. The vulnerability arises from the application's failure to securely verify the authenticity and...

6CVSS4.9AI score0.00374EPSS
Exploits0References1
CVE
CVE
added 2024/05/07 4:53 p.m.81 views

CVE-2024-29209

The CVE-2024-29209/29210 family concerns Phish Alert Button (PAB) for Outlook and related KnowBe4 clients. Technical details across connected records show: attack via update mechanism (CVE-2024-29209) where the client fails to validate the update server’s TLS/SSL and ignores digital signatures, e...

6CVSS5AI score0.00374EPSS
Exploits0References1
CVE
CVE
added 2024/05/07 4:53 p.m.57 views

CVE-2024-29210

CVE-2024-29210 describes a local privilege escalation in Phish Alert Button for Outlook (PAB) caused by insecure permissions on the configuration file (update server URL). An unprivileged local user can modify the configuration to point updates to a malicious server, enabling LPE in conjunction w...

2.8CVSS7.1AI score0.00178EPSS
Exploits0References1
Kitploit
Kitploit
added 2021/03/31 8:30 p.m.804 views

Rubeus - C# Toolset For Raw Kerberos Interaction And Abuses

Rubeus is a C toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy's Kekeo project CC BY-NC-SA 4.0 license and Vincent LE TOUX's MakeMeEnterpriseAdmin project GPL v3.0 license. Full credit goes to Benjamin and Vincent for working out the hard components of...

7.7AI score
Exploits0References14
Rows per page
Query Builder