A dive into MS-RPC vulnerabilities and how to find them | Remco van der Meer | BSides Groningen 2025
In the past few years, several high and critical severity vulnerabilities have been discovered in MS-RPC (Microsoft Remote Procedure Call). RPC calls are often being executed by a high privileged identity like SYSTEM. One functionality is that RPC allows clients to call functions on remote hosts. This opens the doors to potential vulnerabilities that could be exploited remotely. For these reasons, RPC is an interesting area of research. Join me on a dive into MS-RPC vulnerabilities that have been discovered in the past and how they are still being abused today. Learning from these past vulnerabilities, we will continue by taking a look at how we can discover interesting Windows built-in RPC services, using an automated approach.
By: Remco van der Meer
LinkedIn: / remco-vandermeer
Event: BSides Groningen 2025 Official
website: https://bsidesgrunn.org/
LinkedIn: / bsidesgrunn