[Windows] Zerologon vulnerability
Posted: Mon Sep 28, 2020 7:50 pm
CVE-2020-1472
The Zerologon flaw allows an attacker with a foothold on an internal Windows network to simply send a number of Netlogon messages, filling various fields with zeroes, and changing the Active Directory stored password of a Domain Controller.
Tool: https://github.com/SecuraBV/CVE-2020-1472
Screengrab:
More:
https://www.itnews.com.au/news/zerologo ... sed-553317
https://www.secura.com/blog/zero-logon
The Zerologon flaw allows an attacker with a foothold on an internal Windows network to simply send a number of Netlogon messages, filling various fields with zeroes, and changing the Active Directory stored password of a Domain Controller.
Tool: https://github.com/SecuraBV/CVE-2020-1472
Screengrab:
More:
https://www.itnews.com.au/news/zerologo ... sed-553317
https://www.secura.com/blog/zero-logon