CVE-2022-30145

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

...

Microsoft Windows Encrypting File System 代码注入漏洞

Microsoft Windows Encrypting File System is a feature introduced in NTFS 3.0 in Microsoft Windows from Microsoft Corporation USA that provides file system level encryption. A code injection vulnerability exists in Microsoft Windows Encrypting File System EFS. The following products and editions a...

Dropping Files on a Domain Controller Using CVE-2021-43893

On December 14, 2021, during the Log4Shell chaos, Microsoft published CVE-2021-43893, a remote privilege escalation vulnerability affecting the Windows Encrypted File System EFS. The vulnerability was credited to James Forshaw of Google Project Zero, but perhaps owing to the Log4Shell atmosphere,...

Privilege escalation

Windows Encrypting File System EFS Elevation of Privilege Vulnerability...

CVE-2021-43893 Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability

...

CVE-2002-0788

CVE-2002-0788 involves the PGP 7.0.3 client when used with Windows Encrypted File System (EFS) and the “wipe deleted files” option. The interaction creates cleartext temporary files that cannot be wiped or deleted due to strong permissions, potentially exposing cleartext data to local users or at...