This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.
The remote implementation of Kerberos KDC is affected by a privilege
The remote Windows host is affected by a privilege escalation
vulnerability due to the Kerberos Key Distribution Center (KDC)
implementation not properly validating signatures. A remote attacker
can exploit this vulnerability to elevate an unprivileged domain user
account to a domain administrator account.
ESKIMOROLL is one of multiple Equation Group vulnerabilities and
exploits disclosed on 2017/04/14 by a group known as the Shadow
See also :
Microsoft has released a set of patches for Windows 2003, Vista, 2008,
7, 2008 R2, 8, 2012, 8.1, and 2012 R2.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.4
Public Exploit Available : true