We need to have a competition for silliest name. But regardless, one of the members of the team put this completely harmless screenshot together that demonstrates a pre-auth attack against Windows 7 RDP using the SChannel bug. Tomorrow we're putting this in CEU and starting the path of investigating full RCE potential.
Thanks to whoever found such a great bug! This is the first default bug in modern IIS and RDP in a long time (over a decade?). Everyone running a Windows server on the Internet is going to wish they had El Jefe installed on it. :> -dave
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Dailydave mailing list [email protected] https://lists.immunityinc.com/mailman/listinfo/dailydave
