Home Tools Exploits & CVE's Microsoft Windows WFP Default Rules AppContainer Capability Bypass Privilege Escalation

Microsoft Windows WFP Default Rules AppContainer Capability Bypass Privilege Escalation

July 20, 2021

723

Authored by James Forshaw, Google Security Research

The default rules for the WFP connect layers permit certain executables to connect TCP sockets in AppContainers without capabilities leading to elevation of privilege.

Microsoft Windows WFP Default Rules AppContainer Capability Bypass Privilege Escalation

Follow us on Instagram @thecyberpost

EDITOR PICKS

Systemd Insecure PTY Handling

Drupal-Wiki 8.31 / 8.30 Cross Site Scripting

Kortex 1.0 SQL Injection

POPULAR POSTS

ESET NOD32 Antivirus 17.1.11.0 Unquoted Service Path

Restaurant Reservation System Patches Easy-to-Exploit XSS Bug

Sniffle – A Sniffer For Bluetooth 5 And 4.X LE

POPULAR CATEGORY

Cyber Infinite CMS 1.0 SQL Injection

Linux PT_SUSPEND_SECCOMP Permission Bypass / Death Race

Apache James Server 2.3.2 Remote Command Execution