Lucene search
K

14 matches found

zdt
zdt
added 2021/01/18 12:0 a.m.54 views

Microsoft Spooler Local Privilege Elevation Exploit

This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...

7.8CVSS8.7AI score0.14179EPSS
Exploits10
packetstorm
packetstorm
added 2021/01/18 12:0 a.m.196 views

Microsoft Spooler Local Privilege Elevation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/windows/powershell' class MetasploitModule 'Microsoft Spooler Local Privilege Elevation Vulnerability', 'Description' = %q This exploit leverages ...

7.2CVSS0.4AI score0.14179EPSS
Exploits10
metasploit
metasploit
added 2021/01/16 5:41 p.m.150 views

Microsoft Spooler Local Privilege Elevation Vulnerability

This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...

7.8CVSS7.9AI score0.14179EPSS
Exploits10
zdt
zdt
added 2020/11/12 12:0 a.m.83 views

Microsoft Windows Local Spooler Bypass Vulnerability

Windows: Local Spooler CVE-2020-1337 Bypass One way of exploiting this on Windows 10 2004 is to understand that FileNormalizedNameInformation will fail if the new path after the mount point is not under the root directory of the server. For example the admin$ share points to c:\windows. If you se...

7.8CVSS8.9AI score0.14179EPSS
Exploits10
packetstorm
packetstorm
added 2020/11/11 12:0 a.m.957 views

Microsoft Windows Local Spooler Bypass

Windows: Local Spooler CVE-2020-1337 Bypass One way of exploiting this on Windows 10 2004 is to understand that FileNormalizedNameInformation will fail if the new path after the mount point is not under the root directory of the server. For example the admin$ share points to c:\windows. If you se...

7.2CVSS9AI score0.14179EPSS
Exploits10
cve
cve
added 2020/08/17 7:12 p.m.290 views

CVE-2020-1337

CVE-2020-1337 is a local privilege-escalation vulnerability in the Windows Print Spooler. It results from a bypass of the CVE-2020-1048 patch via a Junction Directory, allowing an unprivileged user to achieve elevation by abusing how the spooler writes to the file system. The risk is local (no ne...

7.8CVSS8.2AI score0.14179EPSS
In wildExploits10References3Affected Software8
cvelist
cvelist
added 2020/08/17 7:12 p.m.31 views

CVE-2020-1337 Windows Print Spooler Elevation of Privilege Vulnerability

...

7.8CVSS8.7AI score0.14179EPSS
Exploits10References3
githubexploit
githubexploit
added 2020/08/12 10:5 a.m.251 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft

cve-2020-1337-poc poc for CVE-2020-1337 Windows Print Spooler...

7.8CVSS8.1AI score0.14179EPSS
Exploits10
openvas
openvas
added 2020/08/12 12:0 a.m.51 views

Microsoft Windows Multiple Vulnerabilities (KB4571703)

This host is missing a critical security update according to Microsoft KB4571703 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.99512EPSS
Exploits86References3
openvas
openvas
added 2020/08/12 12:0 a.m.42 views

Microsoft Windows Multiple Vulnerabilities (KB4571729)

This host is missing a critical security update according to Microsoft KB4571729 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.99512EPSS
Exploits86References3
circl
circl
added 2020/08/11 8:41 p.m.22 views

CVE-2020-1337

creationtimestamp| type| source ---|---|--- 2020-08-11 20:41:51+00:00| published-proof-of-concept| https://t.me/cKure/1791 2020-08-12 11:03:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1571 2020-08-12 22:24:03+00:00| published-proof-of-concept|...

7.8CVSS7.9AI score0.14179EPSS
Exploits10References8
githubexploit
githubexploit
added 2020/08/11 2:34 p.m.114 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft

PoC exploit for CVE-2020-1048. It is an exploit targeting a bina...

7.8CVSS7.5AI score0.16502EPSS
Exploits17
githubexploit
githubexploit
added 2020/08/11 12:22 p.m.216 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft

CVE-2020-1337 CVE-2020-1337 is a bypass of PrintDemon...

7.8CVSS8.3AI score0.16502EPSS
Exploits17
githubexploit
githubexploit
added 2020/07/21 8:1 a.m.152 views

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft

CVE-2020-1337 Windows Privilege Escalation this is a WWWwrite...

7.8CVSS8.2AI score0.16502EPSS
Exploits17
Rows per page
Query Builder