meikster (8)

Last Login: July 14, 2020
Assessments
2
Score
8

meikster's Contributions (2)

Sort by:
Filter by:
4
Ratings
Technical Analysis

This vulnerability may seem very useful, it is probably as interesting as other RCEs affecting Microsoft Windows OSes, however public exploits rely on the existence of a registry key (fDisableCam) not being present by default (it has to be manually created) thus not found in enterprise networks.

2
Ratings
  • Attacker Value
    Low
  • Exploitability
    Very Low
Technical Analysis

This vulnerability can still be seen in some companies during internal assessments, however no working exploitation code exists. Only scanners/checkers. SecuritySift managed to achieve information disclosure, however information retrieved is generally not useful.
http://www.securitysift.com/an-analysis-of-ms15-034/