Windows Kerberos KerbRetrieveEncodedTicketMessage AppContainer Privilege Escalation

Discussion in 'News Aggregator' started by Packet Storm, 7 Jul 2022.

  1. Packet Storm

    Packet Storm Guest

    On Windows 11, the Kerberos SSP's KerbRetrieveEncodedTicketMessage message can be used to get an arbitrary service ticket and session key from an AppContainer even without the enterprise authentication capability leading to elevation of privilege.

    Continue reading...
     

Share This Page

Loading...