14 matches found
Microsoft Spooler Local Privilege Elevation Exploit
This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...
Microsoft Spooler Local Privilege Elevation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/windows/powershell' class MetasploitModule 'Microsoft Spooler Local Privilege Elevation Vulnerability', 'Description' = %q This exploit leverages ...
Microsoft Spooler Local Privilege Elevation Vulnerability
This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...
Microsoft Windows Local Spooler Bypass Vulnerability
Windows: Local Spooler CVE-2020-1337 Bypass One way of exploiting this on Windows 10 2004 is to understand that FileNormalizedNameInformation will fail if the new path after the mount point is not under the root directory of the server. For example the admin$ share points to c:\windows. If you se...
Microsoft Windows Local Spooler Bypass
Windows: Local Spooler CVE-2020-1337 Bypass One way of exploiting this on Windows 10 2004 is to understand that FileNormalizedNameInformation will fail if the new path after the mount point is not under the root directory of the server. For example the admin$ share points to c:\windows. If you se...
CVE-2020-1337 Windows Print Spooler Elevation of Privilege Vulnerability
...
CVE-2020-1337
CVE-2020-1337 is a local privilege-escalation vulnerability in the Windows Print Spooler. It results from a bypass of the CVE-2020-1048 patch via a Junction Directory, allowing an unprivileged user to achieve elevation by abusing how the spooler writes to the file system. The risk is local (no ne...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
cve-2020-1337-poc poc for CVE-2020-1337 Windows Print Spooler...
Microsoft Windows Multiple Vulnerabilities (KB4571703)
This host is missing a critical security update according to Microsoft KB4571703 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4571729)
This host is missing a critical security update according to Microsoft KB4571729 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-1337
creationtimestamp| type| source ---|---|--- 2020-08-11 20:41:51+00:00| published-proof-of-concept| https://t.me/cKure/1791 2020-08-12 11:03:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1571 2020-08-12 22:24:03+00:00| published-proof-of-concept|...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
PoC exploit for CVE-2020-1048. It is an exploit targeting a bina...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
CVE-2020-1337 CVE-2020-1337 is a bypass of PrintDemon...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
CVE-2020-1337 Windows Privilege Escalation this is a WWWwrite...