Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]
- Windows Kerberos KerbRetrieveEncodedTicketMessage AppContainer Privilege Escalation[6]
- Authored by James Forshaw[7], Google Security Research[8]
-
On Windows 11, the Kerberos SSP's KerbRetrieveEncodedTicketMessage message can be used to get an arbitrary service ticket and session key from an AppContainer even without the enterprise authentication capability leading to elevation of privilege.
- systems | windows[9]
- advisories | CVE-2022-30164[10]
- SHA-256 |
78434d5ce4cfd024dc8d980cdbc2c6c5bfc491c59fd75bca49f3b74f62b3a77a
- Download[11] | Favorite[12] | View[13]
File Tags
- ActiveX[18] (932)
- Advisory[19] (77,739)
- Arbitrary[20] (15,146)
- BBS[21] (2,859)
- Bypass[22] (1,572)
- CGI[23] (1,012)
- Code Execution[24] (6,688)
- Conference[25] (670)
- Cracker[26] (797)
- CSRF[27] (3,272)
- DoS[28] (21,871)
- Encryption[29] (2,333)
- Exploit[30] (49,892)
- File Inclusion[31] (4,148)
- File Upload[32] (943)
- Firewall[33] (821)
- Info Disclosure[34] (2,550)
- Intrusion Detection[35] (854)
- Java[36] (2,793)
- JavaScript[37] (798)
- Kernel[38] (6,059)
- Local[39] (14,021)
- Magazine[40] (586)
- Overflow[41] (12,218)
- Perl[42] (1,411)
- PHP[43] (5,047)
- Proof of Concept[44] (2,283)
- Protocol[45] (3,319)
- Python[46] (1,401)
- Remote[47] (29,722)
- Root[48] (3,451)
- Ruby[49] (577)
- Scanner[50] (1,630)
- Security Tool[51] (7,701)
- Shell[52] (3,064)
- Shellcode[53] (1,202)
- Sniffer[54] (881)
- Spoof[55] (2,085)
- SQL Injection[56] (16,019)
- TCP[57] (2,361)
- Trojan[58] (676)
- UDP[59] (866)
- Virus[60] (659)
- Vulnerability[61] (30,491)
- Web[62] (9,044)
- Whitepaper[63] (3,718)
- x86[64] (943)
- XSS[65] (17,343)
- Other[66]
File Archives
- July 2022[67]
- June 2022[68]
- May 2022[69]
- April 2022[70]
- March 2022[71]
- February 2022[72]
- January 2022[73]
- December 2021[74]
- November 2021[75]
- October 2021[76]
- September 2021[77]
- August 2021[78]
- Older[79]
Systems
- AIX[80] (426)
- Apple[81] (1,883)
- BSD[82] (368)
- CentOS[83] (55)
- Cisco[84] (1,913)
- Debian[85] (5,948)
- Fedora[86] (1,690)
- FreeBSD[87] (1,241)
- Gentoo[88] (4,152)
- HPUX[89] (878)
- iOS[90] (318)
- iPhone[91] (108)
- IRIX[92] (220)
- Juniper[93] (67)
- Linux[94] (42,407)
- Mac OS X[95] (683)
- Mandriva[96] (3,105)
- NetBSD[97] (255)
- OpenBSD[98] (478)
- RedHat[99] (11,714)
- Slackware[100] (941)
- Solaris[101] (1,607)
- SUSE[102] (1,444)
- Ubuntu[103] (7,869)
- UNIX[104] (9,086)
- UnixWare[105] (185)
- Windows[106] (6,428)
- Other[107]