top of page
Search
Microsoft Outlook CVE-2023-23397: Critical Privilege Escalation Vulnerability
Introduction On the latest Patch Tuesday, Microsoft released 83 security fixes , one of which is the "CVE-2023-23397" vulnerability that affects all versions of the Outlook desktop app on Windows systems. However, this vulnerability does not impact the Outlook web app (OWA) or Microsoft 365 since they do not support NTLM authentication. The attacker can obtain the user's credentials and escalate privileges with these NTLM hashes by leveraging this escalation of privilege iss
Apr 5, 20236 min read
Â
Â
Unpacking CVE-2022-30190: An In-Depth Analysis of Follina RCE
Unpacking CVE-2022-30190: An In-Depth Analysis of MS Office Follina RCE and it's mitigation
Mar 26, 20235 min read
Â
Â
Performing IFEO Injection
IFEO Injection attack is a registry-based attack technique that almost guarantees a code execution as a logged-in user.
Mar 21, 20233 min read
Â
Â
Blog Categories
bottom of page