Posted by malvuln on Jan 07

Discovery / credits: malvuln – (c) 2021
Original source:
Contact: malvuln13 () gmail com

Threat: Backdoor.Win32.Agent.dcbh
Vulnerability: Insecure Permissions EoP
Description: Drops an executable with a randomly generated numeric name
E.g. 674_674.exe. Change permissions are granted to authenticated users,
allowing privilege escalation.
Read More – Full Disclosure

By |2021-01-08T06:28:19-05:00January 8th, 2021|