Published On Oct 9, 2024
Learn about a random CVE every week.
Nothing helps exploits quite like administrative privileges. Too many vulnerabilities are made greater by a wider scope of system permissions, allowing you to go across the network or deeper into systems.
CVE-2024-26169 is a great example of this. The Windows Error Reporting Service (already known to be exploited in a zero-day attack) can be manipulated to create registry keys. That it turn allows the start of a shell command with admin permissions.
The Upfort Perimeter Scan automatically checks your public-facing domain and notifies you if any host systems are vulnerable. Check us out at www.upfort.com
show more