MS10-068 - Important: Vulnerability in Local Security Authority Subsystem Service Could Allow Elevat

News

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Location
Chicago, IL
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). The vulnerability could allow elevation of privilege if an authenticated attacker sent specially crafted Lightweight Directory Access Protocol (LDAP) messages to a listening LSASS server. In order to successfully exploit this vulnerability, an attacker must have a member account within the target Windows domain. However, the attacker does not need to have a workstation joined to the Windows domain.

Link Removed due to 404 Error
 
You must log in or register to reply here.

Similar threads

News
AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus
Replies
0
Views
6K
News
News
News
AA21-321A: Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activi
Replies
0
Views
4K
News
News
News
AA21-291A: BlackMatter Ransomware
Replies
0
Views
2K
News
News
News
AA21-259A: APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus
Replies
0
Views
2K
News
News
News
AA21-209A: Top Routinely Exploited Vulnerabilities
Replies
0
Views
3K
News
News
Back
Top Bottom