Reply to post: Re: Is this another of those "Must have admin privs, access to DC" pre-requisite things?

Windows' authentication 'flaw' exposed in detail

Michael Wojcik Silver badge

Re: Is this another of those "Must have admin privs, access to DC" pre-requisite things?

It's a "must have dumped domain credentials (at least for krbtgt)" thing. Full domain admin privileges are sufficient, but not necessary. This is an elevation of privilege: an attacker might manage to get krbtgt's key without having admin, for example by getting hold of a memory dump, and then leverage it (Golden Ticket) to gain full privileges.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019