Lucene search
+L

171 matches found

Kitploit
Kitploit
added 2021/11/19 8:30 p.m.41 views

Nosferatu - Lsass NTLM Authentication Backdoor

Lsass NTLM Authentication Backdoor How it Works First, the DLL is injected into the lsass.exe process, and will begin hooking authentication WinAPI calls. The targeted function is MsvpPasswordValidate, located in NtlmShared.dll. In the pursuit of not being detected, the hooked function will call...

7.6AI score
Exploits0References1
Kitploit
Kitploit
added 2021/09/21 8:30 p.m.26 views

PyHook - An Offensive API Hooking Tool Written In Python Designed To Catch Various Credentials Within The API Call

PyHook is the python implementation of my SharpHook project, It uses various API hooks in order to give us the desired credentials. PyHook Uses frida to inject it's dependencies into the target process Supported Processes Process | API Call | Description | Progress ---|---|---|--- mstsc |...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2021/06/26 9:30 p.m.51 views

SharpHook - Tool Tath Uses Various API Hooks In Order To Give Us The Desired Credentials

SharpHook is inspired by the SharpRDPThief project, It uses various API hooks in order to give us the desired credentials. In the background it uses the EasyHook project, Once the desired process is up and running SharpHook will automatically inject its dependencies into the target process and...

7.6AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.26 views

NewStart CGSL MAIN 4.06 : sudo Multiple Vulnerabilities (NS-SA-2021-0001)

The remote NewStart CGSL host, running version MAIN 4.06, has sudo packages installed that are affected by multiple vulnerabilities: - In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. pwfeedback is a...

9CVSS7.7AI score0.99295EPSS
Exploits103References7
Gitee
Gitee
added 2021/02/01 10:21 p.m.17 views

Exploit for Improper Handling of Exceptional Conditions in Sudo_Project Sudo

PoC exploit for CVE-2019-14287, a vulnerability in Sudo before 1.8.28. The exploit targets the ability of an attacker with access to a Runas ALL sudoer account to bypass certain policy blacklists and session PAM modules, and cause incorrect logging, by invoking sudo with a crafted user ID. The...

9CVSS8.1AI score0.63917EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.47 views

CentOS 8 : sudo (CESA-2019:3694)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2019:3694 advisory. - sudo: Privilege escalation via 'Runas' specification with 'ALL' keyword CVE-2019-14287 Note that Nessus has not tested for this issue but has instead relied...

9CVSS7.3AI score0.63917EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2020-2196)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.19426EPSS
Exploits13References2
Mageia
Mageia
added 2020/06/10 10:26 p.m.40 views

Updated sudo packages fix security vulnerability

Updated sudo packages fix security vulnerabilities: It was found that sudo always allowed commands to be run with unknown user or group ids if the sudo configuration allowed it for example via the "ALL" alias. This could allow sudo to impersonate non-existent account and depending on how...

7.5CVSS3.5AI score0.03295EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/04/28 3:48 p.m.5 views

sudo: attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user

It was found that sudo always allowed commands to be run with unknown user or group ids if the sudo configuration allowed it for example via the "ALL" alias. This could allow sudo to impersonate non-existent account and depending on how applications are configured, could lead to certain restricti...

7.5CVSS7.1AI score0.03295EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2020/04/09 12:0 a.m.73 views

Update Rollup 8 for System Center 2012 R2 Operations Manager

Update Rollup 8 for System Center 2012 R2 Operations Manager Introduction This article describes the issues that are fixed in Update Rollup 8 for Microsoft System Center 2012 R2 Operations Manager. Additionally, this article contains the installation instructions for Update Rollup 8 for System...

7.2AI score
Exploits0
Microsoft KB
Microsoft KB
added 2020/04/09 12:0 a.m.77 views

Description of Update Rollup 5 for System Center 2012 R2 Operations Manager

Description of Update Rollup 5 for System Center 2012 R2 Operations Manager Introduction This article describes the issues that are fixed in Update Rollup 5 for Microsoft System Center 2012 R2 Operations Manager. This article also contains the installation instructions for Update Rollup 5 for...

7.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/06 12:0 a.m.45 views

Fedora 31 : sudo (2020-8b563bc5f4)

update to latest development version 1.9.0b1 - added sudologsrvd and sudosendlog to files and their appropriate man pages Resolves: rhbz1787823 - Stack based buffer overflow in when pwfeedback is enabled Resolves: rhbz1796945 - fixes: CVE-2019-18634 - By using ! character in the shadow file...

7.8CVSS6.9AI score0.19426EPSS
Exploits13References4
BDU FSTEC
BDU FSTEC
added 2020/03/04 12:0 a.m.8 views

The vulnerability of the sudoer account in the Runas ALL system administration software allows a hacker to disable user authentication using a local password.

The vulnerability of the sudoer account in the Runas ALL system administration program is related to improper access control. Exploiting this vulnerability could allow a malicious actor to disable user authentication using the local password...

7.8CVSS6.9AI score0.02831EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/03/04 12:0 a.m.4 views

The vulnerability of the sudoer account in the Runas ALL system administration software allows a hacker to impersonate an existing user.

The vulnerability of the sudoer account in the Runas ALL system administration program is related to improper access control. Exploiting this vulnerability allows a malicious actor to impersonate an existing user...

7.8CVSS6.9AI score0.03295EPSS
Exploits0References10Affected Software4
RedHat Linux
RedHat Linux
added 2020/02/04 12:56 p.m.63 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9CVSS7.2AI score0.63917EPSS
Exploits10References2
RedHat Linux
RedHat Linux
added 2020/02/04 12:56 p.m.6 views

sudo: Privilege escalation via 'Runas' specification with 'ALL' keyword

A flaw was found in the way sudo implemented running commands with arbitrary user ID. If a sudoers entry is written to allow the attacker to run a command as any user except root, this flaw can be used by the attacker to bypass that restriction...

9CVSS7.3AI score0.63917EPSS
Exploits10References5
NVD
NVD
added 2020/01/23 7:15 p.m.24 views

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

7.5CVSS7.6AI score0.00909EPSS
Exploits0References2
Prion
Prion
added 2020/01/23 7:15 p.m.20 views

Design/Logic Flaw

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

5CVSS7.1AI score0.00909EPSS
Exploits0References2Affected Software6
UbuntuCve
UbuntuCve
added 2020/01/23 7:15 p.m.33 views

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

7.5CVSS7.1AI score0.00909EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/01/23 6:10 p.m.30 views

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation...

7.6AI score0.00909EPSS
Exploits0References2
Rows per page
Query Builder