Lucene search
K

10 matches found

Gitee
Gitee
added 2020/03/29 4:51 p.m.10 views

Exploit for CVE-2018-8581

CVE-2018-8581 这是一个邮箱层面的横向渗透和提权漏洞 它可以在拥有了一个普通权限邮箱账号密码后,完成对其他用户包括域管理员邮箱收件箱的委托接管 本EXP脚本是在原PoC基础上修改的增强版一键脚本,它将在配置好相关参数后,自动完成目标邮箱inbox收件箱的添加委托和删除委托操作,以方便甲方安全部门和红队对授权企业完成一次模拟攻击过程 原PoC是两个脚本配合使用完成添加收信规则的操作,在甲方红队实际工作中不怎么实用,而原PoC除了需要邮箱外,还需要设置目标邮箱用户的SID,但在参考文章中提到的获取用户SID的方法,我在实际环境中测试Exchange Server...

7.4CVSS7AI score0.27558EPSS
Exploits7
myhack58
myhack58
added 2019/01/24 12:0 a.m.90 views

Exchange Server mention the right vulnerability alerts-a vulnerability alert-the black bar safety net

0x00 vulnerability background The vulnerability to the MSRC in 2018 年 11 月 13 published a can on the Exchange Server to achieve elevation of privilege vulnerability number CVE-2018-8581。 According to the MSRC of the vulnerability description information that the attacker successfully exploits thi...

5.8CVSS7.7AI score0.27558EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2018/11/16 12:0 a.m.353 views

Microsoft Exchange Server Elevation of Privilege Vulnerability (November 2018)

The Microsoft Exchange install on the remote host contains an unspecified flaw that allows an authenticated, man-in-the-middle attacker to impersonate another user and escalate privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ...

7.4CVSS8.2AI score0.27558EPSS
Exploits7References2
Circl
Circl
added 2018/11/14 5:39 p.m.15 views

CVE-2018-8581

creationtimestamp| type| source ---|---|--- 2018-11-14 17:39:01+00:00| seen| MISP/5bec5b59-b2b0-4506-9c63-32a40a021402 2019-02-21 21:59:28+00:00| exploited| https://t.me/techb0ltGenona/333 2020-12-09 07:18:57+00:00| seen| MISP/b426aa9c-dc22-4a91-8213-f8d513405423 2023-06-14 21:10:03+00:00| seen|...

7.4CVSS7.4AI score0.27558EPSS
Exploits7References7
NVD
NVD
added 2018/11/14 1:29 a.m.19 views

CVE-2018-8581

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server...

7.4CVSS8.5AI score0.27558EPSS
Exploits7References4
Cvelist
Cvelist
added 2018/11/14 1:0 a.m.26 views

CVE-2018-8581

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server...

7.5AI score0.27558EPSS
Exploits7References3
Vulnrichment
Vulnrichment
added 2018/11/14 1:0 a.m.15 views

CVE-2018-8581

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server...

7.5AI score0.27558EPSS
Exploits7References3
CVE
CVE
added 2018/11/14 1:0 a.m.1180 views

CVE-2018-8581

CVE-2018-8581 is described as a Microsoft Exchange Server elevation of privilege vulnerability (PrivExchange). Connected documents include exploit/testing content showing a Maryland-style mailbox-Delegation approach to impersonate other users by manipulating inbox delegation, effectively enabling...

7.4CVSS7.4AI score0.27558EPSS
In wildExploits7References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/11/14 12:0 a.m.41 views

CVE-2018-8581

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka “Microsoft Exchange Server Elevation of Privilege Vulnerability.” This affects Microsoft Exchange Server. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.4CVSS7.5AI score0.27558EPSS
In wildExploits7References4
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.577 views

KLA11350 PE vulnerability in Microsoft Server Software

Incorrect requests handling vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2018-8581 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...

7.4CVSS8.8AI score0.27558EPSS
Exploits7References4
Rows per page
Query Builder