Subscribe via feed.

Microsoft Windows WFP Default Rules AppContainer Capability Bypass Privilege Escalation

Posted by deepcore on July 20, 2021 – 9:38 pm

The default rules for the WFP connect layers permit certain executables to connect TCP sockets in AppContainers without capabilities leading to elevation of privilege.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.