CVE-2026-56766 Hydra - Stack Buffer Overflow in NTLM Authentication Handler

🗓️ 25 Jun 2026 18:01:07Reported by VulnCheckType

CVE-2026-56766 Hydra NT LAN Manager auth stack overflow via Type-2 challenge enabling code execution.

Reporter	Title	Published	Views	Family All 6
ATTACKERKB	CVE-2026-56766	25 Jun 202618:01	–	attackerkb
CVE	CVE-2026-56766	25 Jun 202618:01	–	cve
EUVD	EUVD-2026-39515	25 Jun 202618:01	–	euvd
NVD	CVE-2026-56766	25 Jun 202619:16	–	nvd
Positive Technologies	PT-2026-52540	25 Jun 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-56766 Hydra - Stack Buffer Overflow in NTLM Authentication Handler	25 Jun 202618:01	–	vulnrichment

[
  {
    "vendor": "vanhauser-thc",
    "product": "thc-hydra",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "versionType": "custom",
        "lessThanOrEqual": "9.7"
      },
      {
        "status": "unaffected",
        "version": "9cc84c20e75f5fef6bb1790bb9ada2afad2204e2",
        "versionType": "git"
      }
    ],
    "repo": "https://github.com/vanhauser-thc/thc-hydra"
  }
]

Source	Link
vulncheck	www.vulncheck.com/advisories/hydra-stack-buffer-overflow-in-ntlm-authentication-handler
github	www.github.com/vanhauser-thc/thc-hydra/commit/9cc84c20e75f5fef6bb1790bb9ada2afad2204e2

25 Jun 2026 18:01Current

CVSS 48.6

CVSS 3.18.8

CWE-121