Lucene search
K

610 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.342 views

Microsoft Exchange Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Exchange Privilege Escalation Exploit', 'Description' = %q This module exploits a privilege escalation vulnerability found in Microsoft...

9.3CVSS7AI score0.23799EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.301 views

Netlogon Weak Cryptographic Authentication

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'windowserror' class MetasploitModule 'Netlogon Weak Cryptographic Authentication', 'Description' = %q A vulnerability exists within the Netlogon authentication...

10CVSS7.7AI score0.99512EPSS
Exploits75
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.458 views

Active Directory Certificate Services (ADCS) Privilege Escalation (Certifried)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Active Directory Certificate Services ADCS privilege escalation Certifried', 'Description' = %q This module exploits a privilege escalation...

9CVSS7AI score0.83277EPSS
Exploits8
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.287 views

HP ProCurve SNAC Domain Controller Credential Dumper

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'HP ProCurve SNAC Domain Controller Credential Dumper', 'Description' = %q This module will extract Domain Controller...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.151 views

AD CS Certificate Template Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/08/23 10:24 a.m.55 views

New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data

The threat actors behind a recently observed Qilin ransomware attack have stolen credentials stored in Google Chrome browsers on a small set of compromised endpoints. The use of credential harvesting in connection with a ransomware infection marks an unusual twist, and one that could have cascadi...

7.7AI score
Exploits0
NVD
NVD
added 2024/08/02 11:16 a.m.25 views

CVE-2024-38876

A vulnerability has been identified in Omnivise T3000 Application Server R9.2 All versions, Omnivise T3000 Domain Controller R9.2 All versions, Omnivise T3000 Product Data Management PDM R9.2 All versions, Omnivise T3000 R8.2 SP3 All versions, Omnivise T3000 R8.2 SP4 All versions, Omnivise T3000...

8.5CVSS0.00243EPSS
Exploits3References2
BDU FSTEC
BDU FSTEC
added 2024/08/02 12:0 a.m.8 views

The vulnerabilities of the components such as Omnivise T3000 Application Server, Omnivise T3000 Domain Controller, Omnivise T3000 Network Intrusion Detection System (NIDS), Omnivise T3000 Product Data Management (PDM), Omnivise T3000 Security Server, Omnivise T3000 Terminal Server, Omnivise T3000 Thin Client, and Omnivise T3000 Whitelisting Server, along with their software-defined hardware platforms for process management and monitoring in the Siemens Omnivise T3000 system, allow attackers to disclose protected information and enhance their privileges.

The vulnerabilities of the Omnivise T3000 Application Server, Omnivise T3000 Domain Controller, Omnivise T3000 Network Intrusion Detection System NIDS, Omnivise T3000 Product Data Management PDM, Omnivise T3000 Security Server, Omnivise T3000 Terminal Server, Omnivise T3000 Thin Client, and...

8.2CVSS7.7AI score0.00187EPSS
Exploits3References2
Citrix
Citrix
added 2024/07/13 12:0 a.m.9 views

Desktops Do Not Register using XenDesktop and Provisioning Server

When using ​XenDesktop with Provisioning Service, the desktops do not register. Note : XenDesktop might try starting all the machines in your desktop group on the VDA Event Viewer: Under Application: Desktop Service - Failed to start WCF services. Exception Log on Failure due to unknown user name...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/06/21 12:0 a.m.3 views

PT-2024-5380 · Omnivise · Omnivise T3000 Terminal Server +5

Name of the Vulnerable Software and Affected Versions: Omnivise T3000 Application Server R9.2 All versions Omnivise T3000 Domain Controller R9.2 All versions Omnivise T3000 Product Data Management PDM R9.2 All versions Omnivise T3000 R8.2 SP3 All versions Omnivise T3000 R8.2 SP4 All versions...

8.5CVSS7.5AI score0.00243EPSS
Exploits3References9
Microsoft KB
Microsoft KB
added 2024/05/14 7:0 a.m.68 views

May 14, 2024—KB5037836 (Security-only update)

May 14, 2024—KB5037836 Security-only update End of support information Windows Server 2008 SP2 Extended Security Updates ESU third and final year ended on January 10, 2023. Additionally, Extended Security Updates on Azure only support ended on January 9, 2024. For more information, see Extended...

8.8CVSS7.2AI score0.11471EPSS
Exploits0
Metasploit
Metasploit
added 2024/04/09 7:49 p.m.185 views

Shadow Credentials

This module can read and write the necessary LDAP attributes to configure a particular account with a Key Credential Link. This allows weaponising write access to a user account by adding a certificate that can subsequently be used to authenticate. In order for this to succeed, the authenticated...

5.5AI score
Exploits0
Microsoft KB
Microsoft KB
added 2024/03/12 7:0 a.m.219 views

March 12, 2024—KB5035885 (Monthly Rollup)

March 12, 2024—KB5035885 Monthly Rollup IMPORTANT If you plan to install this update on a domain controller DC, we highly recommend that you install update KB5037426 instead March 22, 2024. This out-of-band update addresses a known issue that affects the Local Security Authority Subsystem Service...

8.8CVSS7.5AI score0.16384EPSS
Exploits0
Gitee
Gitee
added 2024/03/05 12:41 p.m.44 views

Exploit for CVE-2021-42278

This is a Python script for exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate a Domain Administrator DA from a standard domain user. The script uses the Impacket library to interact with the Active Directory. The script has several components: 1. samtheadmin.py: This is the main script...

8.8CVSS7.3AI score0.74265EPSS
Exploits10
Kitploit
Kitploit
added 2024/02/06 11:30 a.m.39 views

SharpShares - Multithreaded C# .NET Assembly To Enumerate Accessible Network Shares In A Domain

Multithreaded C .NET Assembly to enumerate accessible network shares in a domain Built upon djhohnstein's SharpShares project .\SharpShares.exe help Usage: SharpShares.exe /threads:50 /ldap:servers /ou:"OU=Special Servers,DC=example,DC=local" /filter:SYSVOL,NETLOGON,IPC$,PRINT$ /verbose...

7.2AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/09 12:0 a.m.2 views

PT-2024-1126 · Microsoft · Lsass +1

Name of the Vulnerable Software and Affected Versions: Microsoft Local Security Authority Subsystem Service affected versions not specified Description: The issue is related to a lack of protection for service data in the Local Security Authority Subsystem Service LSASS of the Windows operating...

6.8CVSS9.1AI score0.01183EPSS
Exploits0References8
Citrix
Citrix
added 2024/01/04 12:0 a.m.16 views

Linux VDA shows gray screen then disappears when LDAP server is unreachable

One of Windows domain controllers is down. When user logon Linux VDA, gray screen takes about 1 minutes, then ICA session disappears...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2023/12/12 7:52 p.m.211 views

Find Users Without Pre-Auth Required (ASREP-roast)

This module searches for AD users without pre-auth required. Two different approaches are provided: - Brute force of usernames does not require a user account; should not lock out accounts - LDAP lookup requires an AD user account Module Options msf use auxiliary/gather/asrep msf auxiliaryasrep...

5.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/11/22 5:41 p.m.3 views

samba: "rpcecho" development server allows denial of service via sleep() call on AD DC

A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack elements. This vulnerability stems from an RPC function that can be blocked indefinitely. The issue arises because the "rpcecho" service operates with only one worker in...

6.5CVSS6.6AI score0.01723EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/11/07 10:7 a.m.4 views

samba: "rpcecho" development server allows denial of service via sleep() call on AD DC

A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack elements. This vulnerability stems from an RPC function that can be blocked indefinitely. The issue arises because the "rpcecho" service operates with only one worker in...

6.5CVSS6.6AI score0.01723EPSS
Exploits0References6
Rows per page
Query Builder