Lucene search
K

352 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-4925

Integer signedness error in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted packet...

5CVSS7.3AI score0.02873EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.1 views

SUSE CVE-2015-8714

The dissectdcomOBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not initialize a certain IPv4 data structure, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5.5CVSS7.3AI score0.01539EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2023/01/26 8:0 a.m.76 views

November 8, 2022—KB5020009 (Monthly Rollup)

November 8, 2022—KB5020009 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. REMINDER Windows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020,...

8.8CVSS8.3AI score0.24623EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2023/01/26 8:0 a.m.329 views

November 8, 2022—KB5019970 (OS Build 10240.19567) - EXPIRED

November 8, 2022—KB5019970 OS Build 10240.19567 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

8.8CVSS7AI score0.24623EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.316 views

KB5004442: Windows DCOM Server Security Feature Bypass Registry Check (CVE-2021-26414)

The remote Windows DCOM Server may be in a vulnerable state to exploitation by having the HKLM\Software\Microsoft\Ole\AppCompat\RequireIntegrityActivationAuthenticationLevel registry value set to 0. Hardening changes in DCOM were required for CVE-2021-26414 and were implemented in 2 phases on Jun...

6.5CVSS5.2AI score0.4997EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2022/11/08 8:0 a.m.62 views

November 8, 2022—KB5020019 (Monthly Rollup)

November 8, 2022—KB5020019 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. REMINDER Windows Server 2008 Service Pack 2 SP2 has reached the end of mainstream support and is now in extended support. Starti...

8.8CVSS9AI score0.08053EPSS
Exploits0
Veeam
Veeam
added 2022/11/04 12:0 a.m.101 views

Access to Hyper-V or Veeam B&R Components Fails After DCOM Hardening is Enabled

Article Applicability The issue discussed in this article is not identified solely based on the Veeam errors but rather by their correlation with Windows Event ID 10036, which states: The server-side authentication level policy does not allow the user from address to activate DCOM server. Please...

6.5CVSS5.3AI score0.4997EPSS
Exploits0
Information Security Automation
Information Security Automation
added 2022/10/29 8:37 a.m.83 views

Microsoft Patch Tuesday October 2022: Exchange ProxyNotShell RCE, Windows COM+ EoP, AD EoP, Azure Arc Kubernetes EoP

Hello everyone! This episode will be about Microsoft Patch Tuesday for October 2022, including vulnerabilities that were added between September and October Patch Tuesdays. As usual, I use my open source Vulristics project to create the report. Alternative video link for Russia: $ cat...

0.5AI score0.99964EPSS
Exploits16
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/10/13 5:48 a.m.88 views

MS Enterprise app management service RCE. CVE-2022-35841

TL;DR A remote command execution and local privilege escalation vulnerability has been fixed by Microsoft as part of September’s patch Tuesday. The vulnerability, filed under CVE-2022-35841, affects the Enterprise App Management Service which handles the installation of enterprise applications...

0.1AI score0.02599EPSS
Exploits0
NVD
NVD
added 2022/07/28 4:15 p.m.24 views

CVE-2022-30314

Honeywell Experion PKS Safety Manager 5.02 uses Hard-coded Credentials. According to FSCT-2022-0052, there is a Honeywell Experion PKS Safety Manager hardcoded credentials issue. The affected components are characterized as: POLO bootloader. The potential impact is: Manipulate firmware. The...

4.6CVSS0.00272EPSS
Exploits0References2
Prion
Prion
added 2022/07/28 4:15 p.m.20 views

Hardcoded credentials

Honeywell Experion PKS Safety Manager 5.02 uses Hard-coded Credentials. According to FSCT-2022-0052, there is a Honeywell Experion PKS Safety Manager hardcoded credentials issue. The affected components are characterized as: POLO bootloader. The potential impact is: Manipulate firmware. The...

2.1CVSS5.8AI score0.00272EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/28 3:41 p.m.35 views

CVE-2022-30314

Honeywell Experion PKS Safety Manager 5.02 uses Hard-coded Credentials. According to FSCT-2022-0052, there is a Honeywell Experion PKS Safety Manager hardcoded credentials issue. The affected components are characterized as: POLO bootloader. The potential impact is: Manipulate firmware. The...

6.1AI score0.00272EPSS
Exploits0References2
CVE
CVE
added 2022/07/28 3:41 p.m.75 views

CVE-2022-30314

CVE-2022-30314 affects Honeywell Experion PKS Safety Manager 5.02. The vulnerability arises from hard-coded credentials used to access the POLO bootloader, which is exposed via the DCOM-232/485 serial interface used for firmware management. An attacker with physical or gateway-access to the seria...

4.6CVSS5.7AI score0.00272EPSS
Exploits0References2Affected Software1
Pen Test Partners Blog
Pen Test Partners Blog
added 2021/11/03 6:53 a.m.27 views

DCOM abuse and lateral movement with Cobalt Strike

Introduction When researching lateral movement techniques I came across a post from Raphael Mudge of Cobalt Strike fame. He details scripting an Aggressor Script for Matt Nelson’s MMC20.Application Lateral Movement technique. Reading that post spurred me to make my own DCOM based lateral movement...

7.5AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2021/10/20 12:0 a.m.121 views

Windows Exploitation Tricks: Relaying DCOM Authentication

Posted by James Forshaw, Project Zero In my previous blog post I discussed the possibility of relaying Kerberos authentication from a DCOM connection. I was originally going to provide a more in-depth explanation of how that works, but as it's quite involved I thought it was worthy of its own blo...

7.2CVSS7.3AI score0.04417EPSS
Exploits4
Microsoft KB
Microsoft KB
added 2021/10/12 7:0 a.m.266 views

October 12, 2021—KB5006714 (Monthly Rollup)

October 12, 2021—KB5006714 Monthly Rollup Summary Learn more about this security update, including improvements and fixes, any known issues, and how to get the update. Important: Windows 8.1 and Windows Server 2012 R2 have reached the end of mainstream support and are now in extended support...

8.8CVSS7.3AI score0.73381EPSS
Exploits11
Microsoft KB
Microsoft KB
added 2021/09/27 12:0 a.m.4 views

September 27, 2021—KB5005619 (OS Build 20348.261) Preview

September 27, 2021—KB5005619 OS Build 20348.261 Preview Improvements and fixes This non-security update includes quality improvements. Key changes include: Addresses an issue that might prevent users from opening phone apps that are pinned to the taskbar. This issue occurs after they update to th...

6.7CVSS7AI score0.01039EPSS
Exploits0
CNVD
CNVD
added 2021/09/11 12:0 a.m.22 views

Google Chrome OS licensing issue vulnerability

ChromeOS Readiness Tool installer is a system tool for Chrome OS, a lightweight Web-based open source operating system from Google, Inc. The vulnerability stems from an improper implementation that relaxes DCOM access to two objects, which can be exploited to potentially bypass access control...

7.8CVSS2.6AI score0.0012EPSS
Exploits0References1
Prion
Prion
added 2021/09/08 9:15 p.m.14 views

Information disclosure

Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls...

4.6CVSS7.6AI score0.0012EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/09/08 8:35 p.m.24 views

CVE-2021-30605

Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls...

7.8AI score0.0012EPSS
Exploits0References2
Rows per page
Query Builder