Merge pull request #314 from lu-ka/master

added CVE-2022-2588; reduced CVE color
added CVE-2022-2588; reduced color to red
2025-12-12 15:49:51 -08:00 · 2022-09-23 16:40:53 +02:00 · 2022-09-20 19:26:56 +02:00 · 2022-09-20 00:50:05 +02:00 · 2022-09-13 09:37:40 +03:00 · 2022-09-09 10:14:37 +02:00
3 changed files with 15 additions and 5 deletions
--- a/linPEAS/builder/linpeas_parts/1_system_information.sh
+++ b/linPEAS/builder/linpeas_parts/1_system_information.sh
@@ -42,8 +42,17 @@ fi
 #-- https://stackoverflow.com/a/37939589
 kernelversion=$(uname -r | awk -F"-" '{print $1}')
 kernelnumber=$(echo $kernelversion | awk -F. '{ printf("%d%03d%03d%03d\n", $1,$2,$3,$4); }')
-if [ $kernelnumber -ge 5008000000 ] && [ $kernelnumber -lt 5017000000 ]; then # if kernel version beteen 5.8 and 5.17
-    echo "Vulnerable to CVE-2022-0847" | sed -${E} "s,.*,${SED_RED_YELLOW},"
+if [ $kernelnumber -ge 5008000000 ] && [ $kernelnumber -lt 5017000000 ]; then # if kernel version between 5.8 and 5.17
+    echo "Potentially Vulnerable to CVE-2022-0847" | sed -${E} "s,.*,${SED_RED},"
+    echo ""
+fi
+
+#-- SY) CVE-2022-2588
+#-- https://github.com/Markakd/CVE-2022-2588
+kernelversion=$(uname -r | awk -F"-" '{print $1}')
+kernelnumber=$(echo $kernelversion | awk -F. '{ printf("%d%03d%03d%03d\n", $1,$2,$3,$4); }')
+if [ $kernelnumber -ge 3017000000 ] && [ $kernelnumber -lt 5019000000 ]; then # if kernel version between 3.17 and 5.19
+    echo "Potentially Vulnerable to CVE-2022-2588" | sed -${E} "s,.*,${SED_RED},"
    echo ""
 fi
 echo ""
--- a/winPEAS/winPEASbat/README.md
+++ b/winPEAS/winPEASbat/README.md
@@ -2,7 +2,7 @@

 ![](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/raw/master/winPEAS/winPEASexe/images/winpeas.png)

-**WinPEAS is a script that searh for possible paths to escalate privileges on Windows hosts. The checks are explained on [book.hacktricks.xyz](https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation)**
+**WinPEAS is a script that search for possible paths to escalate privileges on Windows hosts. The checks are explained on [book.hacktricks.xyz](https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation)**

 Check also the **Local Windows Privilege Escalation checklist** from [book.hacktricks.xyz](https://book.hacktricks.xyz/windows-hardening/checklist-windows-privilege-escalation)

--- a/winPEAS/winPEASexe/winPEAS/Info/FilesInfo/McAfee/McAfee.cs
+++ b/winPEAS/winPEASexe/winPEAS/Info/FilesInfo/McAfee/McAfee.cs
@@ -135,8 +135,9 @@ namespace winPEAS.Info.FilesInfo.McAfee

            SHA1 crypto = new SHA1CryptoServiceProvider();

-            var tDESKey = MyUtils.CombineArrays(crypto.ComputeHash(System.Text.Encoding.ASCII.GetBytes("<!@#$%^>")), new byte[] { 0x00, 0x00, 0x00, 0x00 });
-
+            //var tDESKey = MyUtils.CombineArrays(crypto.ComputeHash(System.Text.Encoding.ASCII.GetBytes("<!@#$%^>")), new byte[] { 0x00, 0x00, 0x00, 0x00 });
+            byte[] tDESKey = { 62, 241, 54, 184, 179, 59, 239, 188, 52, 38, 167, 181, 78, 196, 26, 55, 124, 211, 25, 155, 0, 0, 0, 0 };
+            
            // set the options we need
            var tDESalg = new TripleDESCryptoServiceProvider();
            tDESalg.Mode = CipherMode.ECB;
Author	SHA1	Message	Date
Carlos Polop	b2e1a4e64a	Merge pull request #314 from lu-ka/master added CVE-2022-2588; reduced CVE color	2022-09-23 16:40:53 +02:00
lu-ka	cb3e62a3ff	added CVE-2022-2588; reduced color to red	2022-09-20 19:26:56 +02:00
Carlos Polop	701d41073a	Merge pull request #313 from frkngksl/master Update McAfee.cs	2022-09-20 00:50:05 +02:00
Furkan Göksel	31e318c870	Update McAfee.cs	2022-09-13 09:37:40 +03:00
Carlos Polop	eb34a006e2	Merge pull request #311 from Neology92/fix/winpeasbat-typo Fix readme typo	2022-09-09 10:14:37 +02:00
Oskar Legner	3950a1f7bd	Fix typo	2022-09-06 23:19:25 +02:00