Hacker Abusing Windows NFS Remote Code Execution Flaw

20-Jul-22

The CVE-2022-30136 issue was addressed in June, however the report contained additional specific details regarding potential exploitation. The vulnerability is present in Windows NFS and results from erroneous handling of NFSv4 queries.

Sending malicious RPC calls to a target server could be used to abuse it. Furthermore, a successful vulnerability could lead to the execution of arbitrary code as SYSTEM. On the other hand, a botched exploit can potentially cause the system to crash. Read More…