"Windows Vulnerability Could Crack DC Server Credentials Open"

Security researchers at Akamai have discovered a vulnerability in the remote procedure calls (RPC) for the Windows Server service, which could allow an attacker to gain control over the domain controller (DC) in a specific network configuration and execute remote code.  The researchers stated that malicious actors could also exploit the vulnerability to modify a server's certificate mapping to perform server spoofing.  The vulnerability CVE-2022-30216 exists in unpatched Windows 11 and Windows Server 2022 machines and was addressed in July's Patch.  The rest of the article offers technical details on the discovered vulnerability.

Dark Reading reports: "Windows Vulnerability Could Crack DC Server Credentials Open"