Lucene search
K

4 matches found

0day.today
0day.today
added 2024/02/12 12:0 a.m.389 views

IBM i Access Client Solutions Remote Credential Theft Vulnerability

IBM i Access Client Solutions ACS versions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 suffer from a remote credential theft vulnerability. + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

5.5CVSS5.5AI score0.00573EPSS
Exploits3
OSV
OSV
added 2024/02/09 1:15 a.m.3 views

CVE-2024-22318

IBM i Access Client Solutions ACS 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager NTLM hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try ...

5.5CVSS5.8AI score0.00573EPSS
Exploits3References4
CVE
CVE
added 2024/02/09 12:26 a.m.111 views

CVE-2024-22318

IBM i Access Client Solutions (ACS) versions 1.1.2–1.1.4 and 1.1.4.3–1.1.9.4 are vulnerable to NTLM hash disclosure. An attacker can modify UNC-capable paths in ACS configuration files to point to a hostile server; if NTLM is enabled on the Windows workstation, the OS will attempt to authenticate...

5.5CVSS4.9AI score0.00573EPSS
Exploits3References4Affected Software1
Packet Storm
Packet Storm
added 2024/02/09 12:0 a.m.354 views

IBM i Access Client Solutions Remote Credential Theft

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/IBMIACCESSCLIENTREMOTECREDENTIALTHEFTCVE-2024-22318.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.ibm.com Product IBM i Access Client Solutions Versions All...

5.5CVSS7.4AI score0.00573EPSS
Exploits3
Rows per page
Query Builder