TT 脆弱性 Blog

脆弱性情報に関する「個人」の調査・研究のログ

脆弱性: CVE-2022-21893

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft

【図表】 MiTM process intercepting the TSVCPIPE communication. Source: CyberArk. 出典:【ニュース】 ◆Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft (ThreatPost, 2022/01/12 16:05) [Windows RDPのバグが広く蔓延してお…

Attacking RDP from Inside: How we abused named pipes for smart-card hijacking, unauthorized file system access to client machines and more

【図表】 Virtual channel communication between rdpclip.exe, RDS and the RDP client Output of Sysinternals’ pipelist utility showing the TSVCPIPE pipe MiTM process intercepting the TSVCPIPE communication RDPDR initialization sequence from t…


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 2006 - 2022