Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Zero Day Initiative
Zero Day Initiativeadded 2023/05/17 12:0 a.m.24 views

Canonical ksmbd-tools LSARPC Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Canonical ksmbd-tools. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the LSARPCOPNUMLOOKUPSID2 opcode. The issue results from the lac...

9.8CVSS7.3AI score
Exploits0References1
CISA KEV Catalog
CISA KEV Catalogadded 2021/11/03 12:0 a.m.17 views

Microsoft Windows Local Security Authority (LSA) Spoofing Vulnerability

Microsoft Windows Local Security Authority LSA contains a spoofing vulnerability allowing an unauthenticated attacker to call a method on the LSARPC interface and coerce the domain controller to authenticate against another server using NTLM...

7.5CVSS7.2AI score0.93727EPSS
In wildExploits4
Kitploit
Kitploitadded 2018/07/31 10:31 p.m.19 views

Ridrelay - Quick And Easy Way To Get Domain Usernames While On An Internal Network

Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv. Quick and easy way to get domain usernames while on an internal network. How it works RidRelay combines the SMB Relay attack, common lsarpc based queries and RID cycling to get a list of domain usernames. It...

7.3AI score
Exploits0References3
Check Point Advisories
Check Point Advisoriesadded 2016/04/12 12:0 a.m.3 views

Microsoft Windows Secondary Logon Denial of Service (MS16-046: CVE-2016-0135)

A remote denial of service vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way Windows handles memory blocks while using the LSARPC protocol. A remote attacker can exploit this issue by enticing the victim to open a specially crafted file...

7.2CVSS7.7AI score0.0038EPSS
Exploits0
Prion
Prionadded 2008/09/16 11:0 p.m.28 views

Denial of service

srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service system crash or possibly have unspecified other impact via an SMB WRITEANDX packet with an offset that is...

7.1CVSS7.7AI score0.73659EPSS
Exploits3References13Affected Software1
securityvulns
securityvulnsadded 2008/09/16 12:0 a.m.64 views

Microsoft Windows WRITE_ANDX SMB command handling Kernel DoS

Some days ago i have discovered a DoS in Windows Vista. Here is the advisory with a detailed description about the vulnerability that will help to Microsoft they have been already notified about the bug to correct it as soon as possible, and it will help you if you need to add any rule for your...

7.6AI score
Exploits0
Rows per page
Query Builder