31 matches found
ShellExploit
This project is no longer supported PowerSploit is a col...
EUVD-2001-0016
Malware in sbrugna...
The vulnerability of the NTLM Security Support Provider implementation in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the NTLM Security Support Provider in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
CVE-2023-24900 Windows NTLM Security Support Provider Information Disclosure Vulnerability
...
Windows NTLM Security Support Provider Information Disclosure Vulnerability
...
PT-2023-2692 · Microsoft · Windows Ntlm Security Support Provider +1
Name of the Vulnerable Software and Affected Versions: Windows NTLM Security Support Provider affected versions not specified Description: The issue is related to the implementation of the NTLM Security Support Provider protocol in the Windows operating system, which lacks protection for service...
DragonCastle - A PoC That Combines AutodialDLL Lateral Movement Technique And SSP To Scrape NTLM Hashes From LSASS Process
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process. Description Upload a DLL to the target machine. Then it enables remote registry to modify AutodialDLL entry and start/restart BITS service. Svchosts would load our DLL, set again AutodiaDL...
squid: buffer-over-read in SSPI and SMB authentication
A flaw was found in Squid. An incorrect integer overflow protection in the Squid SSPI and SMB authentication helpers is vulnerable to a buffer overflow attack, resulting in information disclosure...
squid: buffer-over-read in SSPI and SMB authentication
A flaw was found in Squid. An incorrect integer overflow protection in the Squid SSPI and SMB authentication helpers is vulnerable to a buffer overflow attack, resulting in information disclosure...
CVE-2022-24454
Windows Security Support Provider Interface Elevation of Privilege Vulnerability...
CVE-2022-24454
Windows Security Support Provider Interface Elevation of Privilege Vulnerability...
Privilege escalation
Windows Security Support Provider Interface Elevation of Privilege Vulnerability...
Microsoft Windows Multiple Vulnerabilities (KB5007206)
This host is missing a critical security update according to Microsoft KB5007206 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
...
Microsoft Windows Multiple Vulnerabilities (KB4103716)
This host is missing a critical security update according to Microsoft KB4103716 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Updates for Windows Server 2008 (May 2018)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the Credential Security Support Provider protocol CredSSP. An attacker who successfully exploits this vulnerability could relay user...
Microsoft Credential Security Support Provider - Remote Code Execution Vulnerability
Exploit for windows platform in category remote exploits credssp This is a poc code for exploiting CVE-2018-0886. It should be used for educational purposes only. It relies on a fork of the rdpy projecthttps://github.com/preempt/rdpy, allowing also credssp relay. Written by Eyal Karni, Preempt...
Microsoft Credential Security Support Provider - Remote Code Execution
credssp This is a poc code for exploiting CVE-2018-0886. It should be used for educational purposes only. It relies on a fork of the rdpy projecthttps://github.com/preempt/rdpy, allowing also credssp relay. Written by Eyal Karni, Preempt [email protected] Build Instructions Linux If you are usin...
Microsoft Windows Multiple Vulnerabilities (KB4088782)
This host is missing a critical security update according to Microsoft KB4088782 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4088786)
This host is missing a critical security update according to Microsoft KB4088786 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...