New Vulnerability in Kerberos Allow Elevation of Privilege

Facebooktwitterredditpinterestlinkedinmail

It’s just a week after a major security breach has been found in Active Directory Secure Channel mechanism (MS14-066, CVE-2014-6321) , and now, one more is joining the party –

More could be read in a post I uploaded to my company blog – Vulnerability in Kerberos Allow Elevation of Privilege

 

Update (8/12/14):

PoC is available for that vulnerability, it documented here.

The python script file could be downloaded here under the title “Python Kerberos Exploitation Kit”.

Leave a Reply

Your email address will not be published. Required fields are marked *