動作
專案資訊 #1088
已結束專案資訊 #1064: 2025-PenTest
Dangerous Permission over adminSDHolder
狀態:
Closed-關閉
優先權:
Normal
被分派者:
周益利
分類:
-
開始日期:
2025-08-01
完成日期:
2025-12-31
完成百分比:
100%
預估工時:
概述
bookmark2025052717152717274892035 "Dangerous Permission over adminSDHolder
" "Granting dangerous permissions over the adminSDHolder container enables attackers to bypass security protections for privileged accounts. Since adminSDHolder automatically resets permissions on protected groups, attackers with write access can establish persistent backdoors in critical admin groups, maintaining undetected control even after password rotations.
" "It is essential to meticulously review the permissions assigned to the adminSDHolder object for non-administrative domain objects, ensuring that permissions are granted only for the minimum necessary.
"
檔案
動作