|
|
|
|
|
|
by indigovole
634 days ago
|
|
|
You can't just dismiss a vuln as, "for the love of god, don't expose XXX to the internet." It's not great to have an unauthenticated RCE on a machine that is _not_ accessible from the internet, either. Inside-the-network RCE is useful for lateral movement and privilege escalation. RCE that you can find by looking for an open UDP port - instead of a vuln scan on 80/443 - is even better. Initial entry is an important vuln abuse case, but not the _only_ abuse case. |
|
|