This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove .Net Remove Authentication Remove LAN Related Topics
Azure Windows 3D Operating System Internet DevOps Storage Organization Technology Systems Review More Related Topics >
article thumbnail

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)

Tenable

SEPTEMBER 12, 2023

Successful exploitation of this flaw would allow for the disclosure of New Technology LAN Manager (NTLM) hashes. Successful exploitation of these vulnerabilities requires an attacker to authenticate with LAN-access and have valid credentials for an Exchange user. Each of these vulnerabilities were given CVSSv3 scores of 8.0

LAN 119
LAN Windows 3D Azure 119
article thumbnail

Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)

Tenable

FEBRUARY 13, 2024

Successful exploitation of this flaw would allow an attacker to relay a New Technology LAN Manager Version 2 (NTLMv2) hash against a vulnerable server. In order to exploit this flaw, an attacker would need to be authenticated with LAN-access and have a valid login for an Exchange user.

LAN 124
LAN Windows Azure Internet 124
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

Microsoft’s August 2023 Patch Tuesday Addresses 73 CVEs (CVE-2023-38180)

Tenable

AUGUST 8, 2023

NET and Visual Studio Denial of Service Vulnerability CVE-2023-38180 is a Denial of Service (DoS) vulnerability in Microsoft Visual Studio,NET versions 6.0 According to the advisories, exploitation of these vulnerabilities would allow an authenticated attacker to execute code using a PowerShell remoting session.

Windows 98
Windows Software Review .Net Azure 98
article thumbnail

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Tenable

JANUARY 10, 2023

This month’s update includes patches for: NET Core. Windows Authentication Methods. and could grant an authenticated attacker SYSTEM privileges. Successful exploitation could lead to disclosure of New Technology LAN Manager (NTLM) hashes and NTLM relay attacks. 11 Critical. 87 Important. 0 Moderate. 3D Builder.

Windows 99
Windows Software Review Operating System LAN 99
article thumbnail

Microsoft’s May 2022 Patch Tuesday Addresses 73 CVEs (CVE-2022-26925)

Tenable

MAY 10, 2022

This month’s update includes patches for: NET and Visual Studio. Windows Authentication Methods. However, when chained with a new technology LAN manager (NTLM) relay attack, the combined CVSSv3 score for the attack chain is 9.8. Microsoft Exchange Server. Microsoft Graphics Component. Microsoft Office. Microsoft Office Excel.

Windows 99
Windows Authentication LAN Policies 99
article thumbnail

Microsoft’s August 2021 Patch Tuesday Addresses 44 CVEs (CVE-2021-26424, CVE-2021-36948)

Tenable

AUGUST 10, 2021

This month’s update includes patches for: NET Core & Visual Studio. CVE-2021-36942 is a spoofing vulnerability in Windows Local Security Authority (LSA) which could allow an unauthenticated attacker using New Technology LAN Manager (NTLM) to trick a domain controller into authenticating with another server. Azure Sphere.

Windows 100
Windows Azure LAN .Net 100
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 48,000+ Insiders by signing up for our newsletter

About
Awards
About
Editions
Awards
Editions
Topics
LinkedIn Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024