cnotin (14)

Last Login: December 10, 2020

Assessments

Score

cnotin's Latest (4) Contributions

Sort by:

Filter by:

cnotin assessed CVE-2020-17144

December 10, 2020 12:16am UTC (3 years ago)•Edited 2 years ago

Ratings

Attacker Value

Medium

Exploitability

High

Common in enterprise Easy to weaponize Gives privileged access Vulnerable in default configuration Authenticated

Technical Analysis

Require access to OWA EWS, authenticated with password or NTLM hash
Deserialization bug
Only concerns Exchange 2010 because the vulnerable feature is missing from later versions according to writeup

cnotin assessed CVE-2020-3153

April 22, 2020 8:32am UTC (3 years ago)

Ratings

Attacker Value

High

Exploitability

High

Common in enterprise Easy to weaponize Gives privileged access Vulnerable in default configuration Authenticated

Technical Analysis

Exploit steps were published by SSD Advisory (files are mentioned but no download seems available). Instructions are precise enough to re-create it.
Local privilege escalation from unprivileged user to SYSTEM

cnotin replied to their assessment of CVE-2020-3952 - VMware vCenter Server vmdir Information Disclosure

April 16, 2020 7:48pm UTC (4 years ago)•Edited 4 years ago

That’s collaboration @wvu-r7 🙌

cnotin assessed CVE-2020-3952 - VMware vCenter Server vmdir Information Disclosure

April 16, 2020 2:20pm UTC (4 years ago)•Edited 4 years ago

Ratings

Attacker Value

Very High

Exploitability

Very High

Common in enterprise Easy to weaponize Gives privileged access Unauthenticated

Technical Analysis

CVSS 10 according to vendor
Technical details shared by Guardicore : from unauthenticated to admin (via LDAP). Implemented in a public exploit
MSF module to come.

cnotin (14)

Last Login: December 10, 2020

cnotin's Latest (4) Contributions

Ratings

Technical Analysis

Ratings

Technical Analysis

Ratings

Technical Analysis

Quick Cookie Notification