Subscribe via feed.

Windows Kerberos KerbRetrieveEncodedTicketMessage AppContainer Privilege Escalation

Posted by deepcore on July 8, 2022 – 3:46 pm

On Windows 11, the Kerberos SSP’s KerbRetrieveEncodedTicketMessage message can be used to get an arbitrary service ticket and session key from an AppContainer even without the enterprise authentication capability leading to elevation of privilege.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »