Microsoft Windows Net Use Insufficent Authentication

Posted by deepcore on April 7, 2020 – 2:53 pm

The Windows “net use” network logon type-3 command does not prompt for authentication when the built-in Administrator account is enabled and both remote and originating systems suffer from password reuse. This also works as “standard” user but unfortunately we do not gain high integrity privileges. However, it opens the door and increases the attack surface if the box we laterally move to has other vulnerabilities present.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [dos] dnsmasq-utils 2.79-1 – 'dhcp_release' Denial of Service (PoC) LimeSurvey 4.1.11 Cross Site Scripting »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Microsoft Windows Net Use Insufficent Authentication

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL