Protecting Against Outlook Elevation Of Privilege Escalation
Tags
attack-pattern: Data Authentication Attempt - T1381 Rundll32 - T1218.011 Software - T1592.002 Vulnerabilities - T1588.006 Rundll32 - T1085
Show in Graph
Common Information
Type Value
UUID b6659f41-72cf-4d3d-9d4c-c9de2d08af75
Fingerprint 34170990e8b3e883
Analysis status DONE
Considered CTI value 1
Text language
Published April 11, 2023, midnight
Added to db April 11, 2023, 11:46 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Protecting Against Outlook Elevation Of Privilege Escalation
Title Protecting Against Outlook Elevation Of Privilege Escalation
Detected Hints/Tags/Attributes 31/1/6
Source URLs
Redirection Url
Details Source https://symantec-enterprise-blogs.security.com/expert-perspectives/protecting-against-outlook-elevation-privilege-escalation
URL Provider
Details Provider Source level domain
Details security.com symantec-enterprise-blogs.security.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 232 Broadcom Software Blogs https://sed-cms.broadcom.com/rss/v1/blogs/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 176 
cve-2023-23397
Details File 6 
davclnt.dll
Details File 1018 
rundll32.exe
Details File 6 
c:\windows\system32\davclnt.dll
Details File 4 
sound.wav
Details Windows Registry Key 18 
HKCU\Software\Microsoft\Office