Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.343 views

Microsoft Exchange Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Exchange Privilege Escalation Exploit', 'Description' = %q This module exploits a privilege escalation vulnerability found in Microsoft...

9.3CVSS7AI score0.23799EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2019/12/30 12:0 a.m.10 views

Microsoft Exchange Privilege Escalation (CVE-2019-0724)

An elevation of privilege vulnerability exists in Microsoft Exchange. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.5AI score0.23799EPSS
Exploits2
Circl
Circl
added 2019/10/18 11:36 a.m.17 views

CVE-2019-0724

creationtimestamp| type| source ---|---|--- 2019-10-18 11:36:43+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/exchangewebserverpushsubscription.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23...

9.3CVSS7.5AI score0.23799EPSS
Exploits2References1
CVE
CVE
added 2019/03/06 12:0 a.m.203 views

CVE-2019-0724

CVE-2019-0724 is a Microsoft Exchange Server privilege-escalation vulnerability. Exploitation (documented in Metasploit module) can force Exchange to authenticate to an attacker-controlled URL via the PushSubscription feature, permitting NTLM relay to a Domain Controller and use of Exchange privi...

9.3CVSS7.5AI score0.23799EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/03/06 12:0 a.m.37 views

CVE-2019-0724

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686...

7.7AI score0.23799EPSS
Exploits2References2
NVD
NVD
added 2019/03/05 11:29 p.m.15 views

CVE-2019-0724

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686...

9.3CVSS7.7AI score0.23799EPSS
Exploits2References2
Prion
Prion
added 2019/03/05 11:29 p.m.25 views

Privilege escalation

An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0724...

5.8CVSS7.5AI score0.23799EPSS
Exploits2References2Affected Software1
Metasploit
Metasploit
added 2019/02/16 2:4 a.m.77 views

Microsoft Exchange Privilege Escalation Exploit

This module exploits a privilege escalation vulnerability found in Microsoft Exchange - CVE-2019-0724 Execution of the module will force Exchange to authenticate to an arbitrary URL over HTTP via the Exchange PushSubscription feature. This allows us to relay the NTLM authentication to a Domain...

8.1CVSS1AI score0.23799EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2019/02/12 8:0 a.m.46 views

Cumulative Update 12 for Exchange Server 2016

Cumulative Update 12 for Exchange Server 2016 Cumulative Update 12 for Microsoft Exchange Server 2016 was released on February 12, 2019. This cumulative update is a security update. It includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. The...

9.3CVSS8.3AI score0.23799EPSS
Exploits2
Kaspersky
Kaspersky
added 2019/02/12 12:0 a.m.162 views

KLA11420 Multiple vulnerabilities in Microsoft Exchange Server

Multiple elevation of privilege vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges. Original advisories CVE-2019-0724 CVE-2019-0686 ADV190004 Related products Microsoft-Exchange-Server CVE list CVE-2019-0724 critical...

9.3CVSS8.2AI score0.23799EPSS
Exploits2References9
Rows per page
Query Builder