Forum » Informacijska varnost » Zerologon - Active Directory
Zerologon - Active Directory
jukoz ::
https://www.zdnet.com/article/zerologon...
"According to Secura experts, the bug, which they named Zerologon, takes advantage of a weak cryptographic algorithm used in the Netlogon authentication process.
This bug allows an attacker to manipulate Netlogon authentication procedures and:
impersonate the identity of any computer on a network when trying to authenticate against the domain controller
disable security features in the Netlogon authentication process
change a computer's password on the domain controller's Active Directory (a database of all computers joined to a domain, and their passwords)
The gist, and the reason why the bug has been named Zerologon, is that the attack is done by adding zero characters in certain Netlogon authentication parameters.
The entire attack is very fast and can last up to three seconds, at most. In addition, there are no limits to how an attacker can use the Zerologon attack. For example, the attacker could also pose as the domain controller itself and change its password, allowing the hacker to take over the entire corporate network."
Kakšen bug je pa to ?? A je to sploh še bug?
"According to Secura experts, the bug, which they named Zerologon, takes advantage of a weak cryptographic algorithm used in the Netlogon authentication process.
This bug allows an attacker to manipulate Netlogon authentication procedures and:
impersonate the identity of any computer on a network when trying to authenticate against the domain controller
disable security features in the Netlogon authentication process
change a computer's password on the domain controller's Active Directory (a database of all computers joined to a domain, and their passwords)
The gist, and the reason why the bug has been named Zerologon, is that the attack is done by adding zero characters in certain Netlogon authentication parameters.
The entire attack is very fast and can last up to three seconds, at most. In addition, there are no limits to how an attacker can use the Zerologon attack. For example, the attacker could also pose as the domain controller itself and change its password, allowing the hacker to take over the entire corporate network."
Kakšen bug je pa to ?? A je to sploh še bug?
Vredno ogleda ...
| Tema | Ogledi | Zadnje sporočilo | |
|---|---|---|---|
| Tema | Ogledi | Zadnje sporočilo | |
| » | Windows 2003 se noče prijavit v domenoOddelek: Operacijski sistemi | 992 (940) | demokedes |
| » | Hekerji (strani: 1 2 3 )Oddelek: Programiranje | 13205 (4650) | darkolord |
| » | Linux varnostne luknjeOddelek: Operacijski sistemi | 2464 (2217) | BigWhale |
| » | Vaša smb.conf datoteka-nasvet?Oddelek: Operacijski sistemi | 1529 (1425) | Gh0st |
| » | Pozor, resna pomankjlivost v WINXPOddelek: Programska oprema | 1919 (1580) | andrej |