2 matches found
CVE-2026-56766 Hydra - Stack Buffer Overflow in NTLM Authentication Handler
Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMTP, POP3, IMAP, NNTP, HTTP, HTTP-Proxy, and HTTP-Proxy-Urlenum modules when processing malicious NTLM Type-2 challenges. A malicious server can send a crafted NTLM Type-2 challenge with an...
Hydra Data Forgery Issue Vulnerability
Hydra is a penetration testing tool. A data forgery issue vulnerability exists in versions prior to Hydra 0.13.0, which stems from a vulnerability that allows an attacker to conduct replay attacks by using snapshot signatures that do not include a HeadID...