var-202108-1914
Vulnerability from variot
Windows LSA Spoofing Vulnerability. Microsoft Windows Active Directory Certificate Services (AD CS) by default can be used as a target for NTLM relay attacks, which can allow a domain-joined computer to take over the entire Active Directory.CVE-2021-36942 AffectedCVE-2021-36942 Affected. Microsoft Windows是美国微软(Microsoft)公司的一套个人设备使用的操作系统. Microsoft Windows存在安全漏洞。以下产品和版本受到影响:Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server, version 2004 (Server Core installation),Windows Server, version 20H2 (Server Core Installation),Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation). Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-202108-1914", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "windows server 2016", scope: "lt", trust: 1, vendor: "microsoft", version: "10.0.14393.4583", }, { model: "windows server 2004", scope: "lt", trust: 1, vendor: "microsoft", version: "10.0.19041.1165", }, { model: "windows server 2012", scope: "eq", trust: 1, vendor: "microsoft", version: "r2", }, { model: "windows server 2019", scope: "lt", trust: 1, vendor: "microsoft", version: "10.0.17763.2114", }, { model: "windows server 2012", scope: "eq", trust: 1, vendor: "microsoft", version: null, }, { model: "windows server 2008", scope: "eq", trust: 1, vendor: "microsoft", version: null, }, { model: "windows server 20h2", scope: "lt", trust: 1, vendor: "microsoft", version: "10.0.19042.1165", }, { model: "windows server 2008", scope: "eq", trust: 1, vendor: "microsoft", version: "r2", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 for 32-bit systems sp2", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2019", }, { model: "microsoft windows server 2019", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: null, }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2012 r2 (server core installation)", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 r2 for x64-based systems sp1", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2004 (server core installation)", }, { model: "microsoft windows server 2016", scope: null, trust: 0.8, vendor: "マイクロソフト", version: null, }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 for 32-bit systems sp2 (server core installation)", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 for x64-based systems sp2", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2016 (server core installation)", }, { model: "microsoft windows server 2012", scope: null, trust: 0.8, vendor: "マイクロソフト", version: null, }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2019 (server core installation)", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2012 (server core installation)", }, { model: "microsoft windows server 2019", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "(server core installation)", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2012 r2", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "20h2 (server core installation)", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2012", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 r2 for x64-based systems sp1 (server core installation)", }, { model: "microsoft windows server 2008", scope: null, trust: 0.8, vendor: "マイクロソフト", version: null, }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2016", }, { model: "microsoft windows server", scope: "eq", trust: 0.8, vendor: "マイクロソフト", version: "2008 for x64-based systems sp2 (server core installation)", }, ], sources: [ { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2021-36942", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "This document was written by Will Dormann.Statement Date: July 26, 2021", sources: [ { db: "CERT/CC", id: "VU#405600", }, ], trust: 0.8, }, cve: "CVE-2021-36942", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "NVD", availabilityImpact: "NONE", baseScore: 5, confidentialityImpact: "NONE", exploitabilityScore: 10, impactScore: 2.9, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Low", accessVector: "Network", authentication: "None", author: "NVD", availabilityImpact: "None", baseScore: 5, confidentialityImpact: "None", exploitabilityScore: null, id: "CVE-2021-36942", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.9, userInteractionRequired: null, vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N", version: "2.0", }, ], cvssV3: [ { attackComplexity: "LOW", attackVector: "NETWORK", author: "NVD", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", exploitabilityScore: 3.9, impactScore: 3.6, integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, { attackComplexity: "LOW", attackVector: "NETWORK", author: "secure@microsoft.com", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 3.9, impactScore: 3.6, integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, { attackComplexity: "Low", attackVector: "Network", author: "NVD", availabilityImpact: "None", baseScore: 5.3, baseSeverity: "Medium", confidentialityImpact: "None", exploitabilityScore: null, id: "CVE-2021-36942", impactScore: null, integrityImpact: "Low", privilegesRequired: "None", scope: "Unchanged", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2021-36942", trust: 1, value: "HIGH", }, { author: "secure@microsoft.com", id: "CVE-2021-36942", trust: 1, value: "HIGH", }, { author: "NVD", id: "CVE-2021-36942", trust: 0.8, value: "Medium", }, { author: "CNNVD", id: "CNNVD-202108-836", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-202104-975", trust: 0.6, value: "MEDIUM", }, { author: "VULMON", id: "CVE-2021-36942", trust: 0.1, value: "MEDIUM", }, ], }, ], sources: [ { db: "VULMON", id: "CVE-2021-36942", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, { db: "NVD", id: "CVE-2021-36942", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Windows LSA Spoofing Vulnerability. Microsoft Windows Active Directory Certificate Services (AD CS) by default can be used as a target for NTLM relay attacks, which can allow a domain-joined computer to take over the entire Active Directory.CVE-2021-36942 AffectedCVE-2021-36942 Affected. Microsoft Windows是美国微软(Microsoft)公司的一套个人设备使用的操作系统. \nMicrosoft Windows存在安全漏洞。以下产品和版本受到影响:Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server, version 2004 (Server Core installation),Windows Server, version 20H2 (Server Core Installation),Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation). Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements", sources: [ { db: "NVD", id: "CVE-2021-36942", }, { db: "CERT/CC", id: "VU#405600", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, { db: "VULMON", id: "CVE-2021-36942", }, ], trust: 3.51, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2021-36942", trust: 3.3, }, { db: "CERT/CC", id: "VU#405600", trust: 2.4, }, { db: "JVNDB", id: "JVNDB-2021-002297", trust: 0.8, }, { db: "CS-HELP", id: "SB2021081030", trust: 0.6, }, { db: "CNNVD", id: "CNNVD-202108-836", trust: 0.6, }, { db: "CS-HELP", id: "SB2021041363", trust: 0.6, }, { db: "CNNVD", id: "CNNVD-202104-975", trust: 0.6, }, { db: "VULMON", id: "CVE-2021-36942", trust: 0.1, }, ], sources: [ { db: "CERT/CC", id: "VU#405600", }, { db: "VULMON", id: "CVE-2021-36942", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, id: "VAR-202108-1914", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "VARIoT devices database", id: null, }, ], trust: 1, }, last_update_date: "2024-07-28T22:43:29.219000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "Windows LSA Spoofing Vulnerability Security Update Guide", trust: 0.8, url: "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021-36942", }, { title: "Microsoft Windows Security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=159231", }, { title: "PetitPotam", trust: 0.1, url: "https://github.com/ollypwn/petitpotam ", }, { title: "PetitPotam\nFuzz mode", trust: 0.1, url: "https://github.com/xiaolichan/petitpotam-v2 ", }, { title: "PetitPotam", trust: 0.1, url: "https://github.com/crisprss/petitpotam ", }, ], sources: [ { db: "VULMON", id: "CVE-2021-36942", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "NVD-CWE-Other", trust: 1, }, { problemtype: "Avoid authentication by spoofing (CWE-290) [NVD Evaluation ]", trust: 0.8, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.6, url: "https://www.kb.cert.org/vuls/id/405600", }, { trust: 1.6, url: "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021-36942", }, { trust: 1.4, url: "https://nvd.nist.gov/vuln/detail/cve-2021-36942", }, { trust: 0.8, url: "cve-2021-36942 ", }, { trust: 0.8, url: "https://www.ipa.go.jp/security/ciadr/vul/20210811-ms.html", }, { trust: 0.8, url: "https://www.jpcert.or.jp/at/2021/at210034.html", }, { trust: 0.6, url: "https://vigilance.fr/vulnerability/microsoft-windows-vulnerabilities-of-august-2021-36114", }, { trust: 0.6, url: "https://www.cybersecurity-help.cz/vdb/sb2021081030", }, { trust: 0.6, url: "https://msrc.microsoft.com/update-guide/vulnerability/cve-2021-36942", }, { trust: 0.6, url: "https://www.cybersecurity-help.cz/vdb/sb2021041363", }, ], sources: [ { db: "CERT/CC", id: "VU#405600", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CERT/CC", id: "VU#405600", }, { db: "VULMON", id: "CVE-2021-36942", }, { db: "JVNDB", id: "JVNDB-2021-002297", }, { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, { db: "NVD", id: "CVE-2021-36942", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2021-08-02T00:00:00", db: "CERT/CC", id: "VU#405600", }, { date: "2021-08-12T00:00:00", db: "VULMON", id: "CVE-2021-36942", }, { date: "2021-08-26T00:00:00", db: "JVNDB", id: "JVNDB-2021-002297", }, { date: "2021-08-10T00:00:00", db: "CNNVD", id: "CNNVD-202108-836", }, { date: "2021-04-13T00:00:00", db: "CNNVD", id: "CNNVD-202104-975", }, { date: "2021-08-12T18:15:10", db: "NVD", id: "CVE-2021-36942", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2021-10-05T00:00:00", db: "CERT/CC", id: "VU#405600", }, { date: "2023-12-28T00:00:00", db: "VULMON", id: "CVE-2021-36942", }, { date: "2021-08-26T03:05:00", db: "JVNDB", id: "JVNDB-2021-002297", }, { date: "2022-04-02T00:00:00", db: "CNNVD", id: "CNNVD-202108-836", }, { date: "2021-04-14T00:00:00", db: "CNNVD", id: "CNNVD-202104-975", }, { date: "2024-07-26T19:29:48.297000", db: "NVD", id: "CVE-2021-36942", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-202108-836", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Microsoft Windows Active Directory Certificate Services can allow for AD compromise via PetitPotam NTLM relay attacks", sources: [ { db: "CERT/CC", id: "VU#405600", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "other", sources: [ { db: "CNNVD", id: "CNNVD-202108-836", }, { db: "CNNVD", id: "CNNVD-202104-975", }, ], trust: 1.2, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.