In June of 2021, Microsoft disclosed a local privilege escalation vulnerability affecting the Print Spooler service (spoolsv.exe). This vulnerability was dubbed CVE-2021–1675 and given a relatively low CVSS score of 3.0. A few weeks later, Microsoft increased the severity of the bug and classified it as a Remote Code Execution…

Previously, I explored the recent critical Log4j vulnerability (CVE-2021–44228) that allowed me to execute remote code on a Minecraft server. The vulnerability has been dubbed ‘Log4Shell’ by researchers and it affects the Log4j2 (and in some cases Log4j1) Java logging framework. Log4j2 uses something called “Message Lookup Substitution” to dynamically…

ZeroLogon is a critical (CVSS: 10.0) vulnerability in the NETLOGON protocol that was first discovered by Secura researchers and pathed by Microsoft in an update on August 11, 2020. It is arguably the worst vulnerability of 2020. …

December 2021 saw the emergence of a new zero-day vulnerability named ‘Log4Shell’ or CVE-2021–44228 that impacts the Java Log4j library found in many applications. From the CVE Mitre page: Apache Log4j2 2.0-beta9 through 2.12.1 and 2.13.0 through 2.15.0 JNDI features used in configuration, log messages, and parameters do not protect…

This week I went through and had a crack at a CTF virtual machine called ‘Wakanda’ found at https://www.vulnhub.com/entry/wakanda-1,251/ . The objective of the CTF was to capture three flags scattered throughout the virtual machine. The description on VulnHub reads “A new Vibranium market will soon be online in the…