Critical Remote Code Execution issue impacts popular post-exploitation toolkit Cobalt Strike
Security Affairs
OCTOBER 18, 2022
This can be exploited using an object tag, which in turn can load a malicious payload from a webserver, which is then executed by the Cobalt Strike client.” “Disabling automatic parsing of html tags across the entire client was enough to mitigate this behaviour.” ” reads the post published by HelpSystems.
Let's personalize your content