Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Remote code execution and local privilege escalation due to UNC access and NetNTLMv2 hash theft
Vulnerability Description
Improper input validation in the OSSEC HIDS agent for Windows prior to version 3.8.0 allows an attacker in with control over the OSSEC server or in possession of the agent's key to configure the agent to connect to a malicious UNC path. This results in the leakage of the machine account NetNTLMv2 hash, which can be relayed for remote code execution or used to escalate privileges to SYSTEM via AD CS certificate forging and other similar attacks.
CVSS Information
N/A
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
OSSEC HIDS agent for Windows 安全漏洞
Vulnerability Description
OSSEC HIDS agent for Windows是OSSEC开源的一个windows上的入侵检测系统。 OSSEC HIDS agent for Windows 3.8.0之前版本存在安全漏洞,该漏洞源于输入验证不当,可能导致远程代码执行或权限提升。
CVSS Information
N/A
Vulnerability Type
N/A