| 1181 | 2-byte DoS in freebsd-telnetd / netbsd-telnetd / netkit-telnetd / inetutils-telnetd / telnetd in Kerberos Version 5 Applications - Binary Golf Grand Prix 3 |
DoS |
FreeBSD Security Team |
Pierre Kim (@PierreKimSec) |
Bug Bounty | 2022-08-24 | 2023-06-13 |
| 1031 | New Attack Paths? AS Requested Service Tickets |
Local Privilege Escalation
Windows
Kerberos
Active Directory |
Microsoft |
Charlie Clark (@exploitph) |
Bug Bounty | 2022-09-25 | 2023-06-13 |
| 898 | RC4 Is Still Considered Harmful |
Kerberos
MiTM
Local Privilege Escalation
Downgrade attack |
Microsoft (Windows) |
James Forshaw (@tiraniddo) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 784 | From Zero to Hero Part 1: Bypassing Intel DCM’s Authentication by Spoofing Kerberos and LDAP Responses (CVE-2022-33942) |
Authentication bypass
Kerberos
RCE
Privilege escalation
Security code review |
Intel |
Julien Ahrens (@MrTuxracer) |
Bug Bounty | 2022-11-23 | 2023-06-13 |
| 746 | From Zero to Hero Part 2: From SQL Injection to RCE on Intel DCM (CVE-2022-21225) |
SQL injection
Kerberos
RCE
Privilege escalation
Security code review |
Intel |
Julien Ahrens (@MrTuxracer) |
Bug Bounty | 2022-12-01 | 2023-06-13 |
| 476 | Azure Ad Kerberos Tickets: Pivoting To The Cloud |
Active Directory
Cloud
Lateral movement |
NA |
Edwin David |
Bug Bounty | 2023-02-09 | 2023-06-13 |
| 396 | From CVE-2022-33679 to Unauthenticated Kerberoasting |
Kerberos
MiTM
Local Privilege Escalation
Downgrade attack |
Microsoft (Windows) |
Trampas Howe (@trampashowe) |
Bug Bounty | 2023-02-25 | 2023-06-13 |
| 242 | Protected Users: you thought you were safe uh? |
Active Directory
Kerberos
NTLM
Internal pentest |
Microsoft (Windows) |
Aurélien CHALOT (@Defte_) |
Bug Bounty | 2023-03-31 | 2023-06-13 |
| 49 | Anonymised Penetration Test Report |
Internal pentest
RCE
ADCS
Active Directory
Kerberos
DHCPv6
LLMNR |
NA |
Volkis (@VolkisAU) |
Bug Bounty | 2023-05-28 | 2023-06-13 |
