Month: <span>January 2020</span>

Managing Active Directory groups from Linux

I recently came across a peculiar scenario that caused me to have to think a little outside the box. I was able to obtain credentials for an account that was part of the “Account Operators” group.  Here is Microsoft’s description of that group: The Account Operators group grants limited account creation privileges to a user….

Zero day vulnerabilities in Determine Selectica Contract Lifecycle Management (SCLM)

Recently I discovered multiple high severity vulnerabilities in Selectica Contract Lifecycle Management (SCLM) version 5.4.  Cross-site Scripting (XSS) There was no shortage of XSS in this app.  Here’s an example from a light scan with Burp Suite: This is pretty easy to leverage for account takeover, even more so because the HTTPOnly flag was not…