[Nulled] » Information security » Horizon3 Attack Team resellers warn that by the end of the week
January 23 2023

Horizon3 Attack Team resellers warn that by the end of the week

Horizon3 Attack Team resellers warn that by the end of the week, a PoC for a critical RCE vulnerability affecting Zoho ManageEngine products will be available.

CVE-2022-47966 is related to the use of an outdated and vulnerable third-party Apache Santuario dependency. The bug has been fixed by several patches released starting from October 27, 2022.

Successful operation allows unauthorized attackers to execute arbitrary code from NT AUTHORITY\SYSTEM on ManageEngine servers if the SAML-based single sign-on (SSO) system is enabled or was enabled at least once before the attack.

The vulnerability is not difficult to use and allows you to effectively carry out "spray and pray" type attacks.

To date, the resellers have not provided technical details, providing only general indicators of compromise (IOC). However, by the end of the week, Horizon3 is planning to release its PoC exploit.

Despite the lack of information about attacks using this vulnerability in the wild, according to GreyNoise, hackers are highly likely to quickly move on to creating their own exploits as soon as Horizon3 publishes the PoC.

Given that preliminary estimates using Shodan indicate the vulnerability of 10% of all open ManageEngine products to CVE-2022-47966 attacks, administrators should pay close attention to the issues of fixing potentially vulnerable solutions. After all, in recent years, Zoho ManageEngine servers have been subjected to constant hacker attacks

Information

Visitors who are in the group Guests they can't download files.
Log in to the site under your login and password or if you are a new user go through the process registrations on the website.

Comments:

This publication has no comments yet. You can be the first!

Information the publication:

  • Author of the publication: AdequateSchizo
  • Date of publication: 23 January 2023 12:19
  • Publication category(s): Information security
  • Number of views of the publication: 167
  • Number of comments to the publication: 0

Related News

23 January 2023
Information security
As we warned, Horizon3

As we warned, Horizon3 researchers have uncovered a PoC exploit and presented a technical analysis for the

Read more
16 January 2023
Information security
Experts warn of a

Experts warn of a critical vulnerability of the Linux kernel of 10 points on the CVSS scale, which affects SMB

Read more
16 January 2023
Information security
Thousands of Citrix ADC

Thousands of Citrix ADC and Gateway servers remain vulnerable to two major vulnerabilities fixed recently.

Read more
16 January 2023
Information security
Auth0 fixed an RCE

Auth0 fixed an RCE vulnerability in the popular open source library JsonWebToken, which was used in more than

Read more
16 January 2023
Information security
Well, hello in 2023!

Well, hello in 2023! It's time to get down to business again! The year has just begun, and a lot of events have

Read more

Information

Users of 🆅🅸🆂🅸🆃🅾🆁 are not allowed to comment this publication.

Site Search

Site Menu


☑ Websites Scripts

Calendar

«    December 2024    »
MonTueWedThuFriSatSun
 1
2345678
9101112131415
16171819202122
23242526272829
3031 

Advertisement

Survey on the website

Evaluate the work of the site
 

Statistics

  • +6 Total articles 6751
  • +18 Comments 4235
  • +24 Users : 6069