SpoolFool

Description

(Palo Alto) n addition to using the Potato Suite mentioned above, the attackers also used another local privilege escalation (LPE) proof of concept (PoC) published on GitHub called SpoolFool, as shown in Figure 2 above. This tool exploits CVE-2022-21999 (Windows Print Spooler Elevation of Privilege Vulnerability).

Names

Name
SpoolFool

Information

https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/

Other Information

Uuid

4a4b1383-1b5e-439f-8929-291e36cd9c58

Last Card Change

2023-10-12

Threat Intelligence Garden

Explorer

SpoolFool

SpoolFool

Description

Names

Category

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks