Lucene search
+L

89 matches found

Rapid7 Blog
Rapid7 Blog
added 2022/07/01 6:44 p.m.62 views

Metasploit Weekly Wrap-Up

SAMR Auxiliary Module A new SAMR auxiliary module has been added that allows users to add, lookup, and delete computer accounts from an AD domain. This should be useful for pentesters on engagements who need to create an AD account to gain an initial foothold into the domain for lateral movement...

7.5CVSS0.5AI score0.99714EPSS
Exploits59
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.22 views

Slackware: Security Advisory (SSA:2016-106-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.3693EPSS
Exploits0References2
Kitploit
Kitploit
added 2022/01/27 11:30 a.m.415 views

BloodyAD - An Active Directory Privilege Escalation Framework

BloodyAD is an Active Directory Privilege Escalation Framework, it can be used manually using bloodyAD.py or automatically by combining pathgen.py and autobloody.py. This framework supports NTLM with password or NTLM hashes and Kerberos authentication and binds to LDAP/LDAPS/SAMR services of a...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2020/09/15 11:30 a.m.144 views

Rbcd-Attack - Kerberos Resource-Based Constrained Delegation Attack From Outside Using Impacket

Abusing Kerberos Resource-Based Constrained Delegation TL;DR This repo is about a practical attack against Kerberos Resource-Based Constrained Delegation in a Windows Active Directory Domain. The difference from other common implementations is that we are launching the attack from outside of the...

7.4AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.50 views

Ubuntu 12.04 LTS : samba regressions (USN-2950-4) (Badlock)

USN-2950-1 fixed vulnerabilities in Samba. The backported fixes introduced in Ubuntu 12.04 LTS caused interoperability issues. This update fixes compatibility with certain NAS devices, and allows connecting to Samba 3.6 servers by relaxing the 'client ipc signing' parameter to 'auto'. We apologiz...

7.5CVSS6.7AI score0.3693EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2016/05/05 12:0 a.m.36 views

Ubuntu 14.04 LTS / 16.04 LTS : Samba regressions (USN-2950-3)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2950-3 advisory. USN-2950-1 fixed vulnerabilities in Samba. The fixes introduced in Samba 4.3.8 caused certain regressions and interoperability issues. This update...

5.7AI score
Exploits0References1
myhack58
myhack58
added 2016/04/16 12:0 a.m.44 views

BadLock vulnerability of technology to track and risk protection-vulnerability warning-the black bar safety net

Nsfocus continued focus on domestic security trends, as early as 3 months when first released BadLock threat warning notices. 4 on 1 on 2, Microsoft patch day schedule. At this time Microsoft released the patch, contains a BadLock vulnerability that can be on a windows System and the Samba servic...

1.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/14 12:0 a.m.46 views

Amazon Linux AMI : samba (ALAS-2016-686) (Badlock)

Multiple flaws were found in Samba's DCE/RPC protocol implementation. A remote, authenticated attacker could use these flaws to cause a denial of service against the Samba server high CPU load or a crash or, possibly, execute arbitrary code with the permissions of the user running Samba root. Thi...

7.5CVSS7.1AI score0.3693EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2016/04/14 12:0 a.m.39 views

CentOS Update for ipa-admintools CESA-2016:0612 centos7

Check the version of ipa-admintools SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882461";...

7.5CVSS6.4AI score0.3693EPSS
Exploits0References2
Cent OS
Cent OS
added 2016/04/13 12:14 a.m.92 views

libsmbclient, samba security update

CentOS Errata and Security Advisory CESA-2016:0611 An update for samba is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7AI score0.3693EPSS
Exploits0References7
seebug.org
seebug.org
added 2016/04/13 12:0 a.m.43 views

Samba Badlock 漏洞

概述 Samba 3.6.0-4.4.0版本在MS-SAMR及MS-LSAD协议未正确处理DCERPC连接,可使中间人攻击者修改客户端到服务器的数据流,执行协议降级攻击并冒充用户,对Security Account Manager Database读写操作,获取敏感信息等。 在首次被公开发布时称为"Badlock"。 受影响版本 cpe:/a:samba:samba:4.4.0 cpe:/a:samba:samba:4.4.1 cpe:/a:samba:samba:4.4.0:rc3 cpe:/a:samba:samba:4.4.0:rc2...

7.1AI score
Exploits0
Amazon
Amazon
added 2016/04/13 12:0 a.m.64 views

Critical: samba

Issue Overview: Multiple flaws were found in Samba's DCE/RPC protocol implementation. A remote, authenticated attacker could use these flaws to cause a denial of service against the Samba server high CPU load or a crash or, possibly, execute arbitrary code with the permissions of the user running...

7.5CVSS7.6AI score0.3693EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/13 12:0 a.m.51 views

RHEL 5 : samba3x (RHSA-2016:0613)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0613 advisory. - samba: crash in dcesrvauthbindack due to missing error check CVE-2015-5370 - samba: Man-in-the-middle attacks possible with NTLMSSP...

7.5CVSS6.7AI score0.3693EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2016/04/13 12:0 a.m.49 views

RHEL 6 : samba4 (RHSA-2016:0620)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0620 advisory. Samba is an open-source implementation of the Server Message Block SMB or Common Internet File System CIFS protocol, which allows...

7.5CVSS7AI score0.3693EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2016/04/13 12:0 a.m.59 views

RHEL 6 : samba (RHSA-2016:0619)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0619 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...

7.5CVSS7AI score0.3693EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2016/04/13 12:0 a.m.39 views

RedHat Update for samba RHSA-2016:0611-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.3693EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2016/04/12 12:0 a.m.58 views

Security fix for the ALT Linux 8 package samba version 4.4.2-alt1

April 12, 2016 Andrey Cherepanov 4.4.2-alt1 - New version - Security fixes: - CVE-2015-5370 Multiple errors in DCE-RPC code - CVE-2016-2110 Man in the middle attacks possible with NTLMSSP - CVE-2016-2111 NETLOGON Spoofing Vulnerability - CVE-2016-2112 LDAP client and server don't enforce integrit...

6.8CVSS6.2AI score0.3693EPSS
Exploits0
ALT Linux
ALT Linux
added 2016/04/12 12:0 a.m.52 views

Security fix for the ALT Linux 10 package samba version 4.4.2-alt1

April 12, 2016 Andrey Cherepanov 4.4.2-alt1 - New version - Security fixes: - CVE-2015-5370 Multiple errors in DCE-RPC code - CVE-2016-2110 Man in the middle attacks possible with NTLMSSP - CVE-2016-2111 NETLOGON Spoofing Vulnerability - CVE-2016-2112 LDAP client and server don't enforce integrit...

6.8CVSS6.1AI score0.3693EPSS
Exploits0
Samba
Samba
added 2016/04/12 12:0 a.m.410 views

SAMR and LSA man in the middle attacks possible

The Security Account Manager Remote Protocol MS-SAMR and the Local Security Authority Domain Policy Remote Protocol MS-LSAD are both vulnerable to man in the middle attacks. Both are application level protocols based on the generic DCE 1.1 Remote Procedure Call DCERPC protocol. These protocols ar...

6.8CVSS2.3AI score0.3693EPSS
Exploits0
Samba
Samba
added 2016/04/12 12:0 a.m.62 views

SAMR and LSA man in the middle attacks possible

Description The Security Account Manager Remote Protocol MS-SAMR and the Local Security Authority Domain Policy Remote Protocol MS-LSAD are both vulnerable to man in the middle attacks. Both are application level protocols based on the generic DCE 1.1 Remote Procedure Call DCERPC protocol. These...

7.5CVSS0.1AI score0.3693EPSS
Exploits0
Rows per page
Query Builder