10 matches found
CVE-2020-1048
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070...
Metasploit Wrap-up
Nine! Nine new modules! Ah ha ha! With the coming of autumn here in the Northern hemisphere, the nights are getting longer, and the hacking is getting stronger. We’ve really got something for everybody in this release, from IoT to infrastructure, Windows, and Linux; everyone’s pretty...
Microsoft Spooler Local Privilege Elevation Vulnerability
This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
CVE-2020-1337 CVE-2020-1337 is a bypass of PrintDemon...
Exploit for Incorrect Resource Transfer Between Spheres in Microsoft
CVE-2020-1048 POC exploit code for CVE-2020-1048PrintDemon...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1048...
CVE-2020-1048
CVE-2020-1048 is a Windows Print Spooler elevation of privilege vulnerability. It arises from improper handling that allows arbitrary writing to the file system, enabling local privilege escalation. Public exploits/public PoCs exist (notably PrintDemon) and have been discussed alongside patch cir...
CVE-2020-1048: Windows Print Spooler Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka ‘Windows Print Spooler Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-1070. Recent assessments: bwatters-r7 at May 14, 2020...
CVE-2020-1048
creationtimestamp| type| source ---|---|--- 2020-05-13 22:58:05+00:00| published-proof-of-concept| https://t.me/hybgl/209 2020-05-14 10:01:29+00:00| published-proof-of-concept| https://t.me/misteam/160 2020-08-11 20:41:51+00:00| published-proof-of-concept| https://t.me/cKure/1791 2020-08-12...
KB4556852: Windows Server 2012 May 2020 Security Update
The remote Windows host is missing security update 4556852 or cumulative update 4556840. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited thi...