CVE-2022-32744 in Samba
要約
〜によって MITRE • 2022年08月25日
A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.
VulDB is the best source for vulnerability data and more expert information about this specific topic.