21 matches found
EUVD-2002-0441
Malware in sbrugna...
EUVD-2024-17335
Malicious code in bioql PyPI...
CVE-2024-1591
Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues...
CVE-2024-1591
Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues...
CVE-2024-1591
Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues...
Design/Logic Flaw
Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues...
CVE-2024-1591
The CVE-2024-1591 issue affects BeyondTrust’s Privilege Management for Windows (prior to version 24.1). A local authenticated attacker can view Sysvol when the product is configured to use a GPO policy, enabling potential discovery of configuration issues and policy details. The connected PT-2024...
PT-2024-18155 · Beyondtrust · Privilege Management For Windows
Name of the Vulnerable Software and Affected Versions: Privilege Management for Windows versions prior to 24.1 Description: A local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy, allowing them to view the policy and potentially find...
BeyondTrust Privilege Management Security Vulnerability
BeyondTrust Privilege Management is the BeyondTrust Privilege Management tool for Windows and Mac SaaS from BeyondTrust USA. A security vulnerability exists in BeyondTrust Privilege Management for Windows versions prior to 24.1. An attacker could exploit the vulnerability to view Sysvol...
Grouper2 - Find Vulnerabilities In AD Group Policy
What is it for? Grouper2 is a tool for pentesters to help find security-related misconfigurations in Active Directory Group Policy. It might also be useful for other people doing other stuff, but it is explicitly NOT meant to be an audit tool. If you want to check your policy configs against some...
Automate Getting Domain Admin Using Empire: DeathStar
DeathStar is a Python script that uses Empire’s RESTful API to automate gaining Domain Admin rights in Active Directory environments using a variety of techinques. Installation Currently, for Death Star to work you’re going to have to install byt3bl33d3r’s fork of Empire until this pull request...
Windows 2008 GPP exploit-vulnerability warning-the black bar safety net
The test environment Windows 7 ordinary members of the domain Windows 2008 domain controller The first deployment of the GPP, here my deployment strategy is to the domain members are added to a test user, the password is test123 ! Add a local user ! Then came the Group Policy Management ! Will th...
CVE-2014-1812
The Group Policy implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly handle distribution of passwords, which allows remote authenticated users to obtain sensitive credential...
CVE-2014-1812
The Group Policy implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly handle distribution of passwords, which allows remote authenticated users to obtain sensitive credential...
CVE-2014-1812
The Group Policy implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly handle distribution of passwords, which allows remote authenticated users to obtain sensitive credential...
MS14-025: An Update for Group Policy Preferences
Today, we released an update to address a vulnerability in Group Policy Preferences MS14-025. Group Policy Preferences was an addition made to Group Policy to extend its capabilities. Among other things, Group Policy Preferences allows an administrator to configure: Local administrator accounts...
Exploiting Windows 2008 Group Policy Preferences: получение некоторых паролей из AD
Active Directory в Windows 2008 содержит такую Group Policy Preferences как "Local Users and Groups". При создании юзеров из AD в этом пункте, компьютеры, для которых создаются эти юзеры, скачивают файл с AD и находят там нового юзера и его пароль, который необходимо создать у себя локально. В...
Can not log on locally to the system of the Telnet solution-vulnerability warning-the black bar safety net
In Windows 2 0 0 0 environment, is Group Policy to deny logon locally has been relatively headache thing. This article will introduce one to all users denied to log on locally after the solve method. In Windows2000, if a user is to cancel the log on locally permission, when the user locally logs ...
CVE-2002-0444
Microsoft Windows 2000 running the Terminal Server 90-day trial version, and possibly other versions, does not apply group policies to incoming users when the number of connections to the SYSVOL share exceeds the maximum, e.g. with a maximum number of licenses, which can allow remote authenticate...
CVE-2002-0444
Technical details about CVE-2002-0444 are not provided in the supplied documents. The description notes that Windows 2000 Terminal Server SYSVOL policy application can fail when connections exceed a maximum; monitor for official updates.