Security News > 2017 > July > Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

2017-07-11 17:43

Microsoft today addressed two NTLM-related vulnerabilities privately disclosed by Preempt Security. The flaws allow for credential relay attacks.

News URL

http://threatpost.com/microsoft-addresses-ntlm-bugs-that-facilitate-credential-relay-attacks/126752/

#attack #credential #microsoft #ntlm #threatpost

Related news

Microsoft SharePoint Connector Flaw Could've Enabled Credential Theft Across Power Platform (source)
CISA tags Microsoft .NET and Apache OFBiz bugs as exploited in attacks (source)
Hackers spoof Microsoft ADFS login pages to steal credentials (source)
Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks (source)
Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries (source)
Microsoft: Hackers steal emails in device code phishing attacks (source)
Microsoft fixes Power Pages zero-day bug exploited in attacks (source)
Botnet targets Basic Auth in Microsoft 365 password spray attacks (source)
Microsoft names alleged credential-snatching 'Azure Abuse Enterprise' operators (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		381	52	1423	2925	176	4576

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.