Posted by malvuln on Jan 07

Discovery / credits: malvuln – Malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/bba63df41adcf2cf80c74e4a62539d44.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Agent.dcbh
Vulnerability: Insecure Permissions EoP
Description: Drops an executable with a randomly generated numeric name
E.g. 674_674.exe. Change permissions are granted to authenticated users,
allowing privilege escalation.
Type:…
Read More – Full Disclosure


By |2021-01-08T06:28:19+00:00January 8th, 2021|