CVE-2023-23749

The 'LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login' extension is vulnerable to LDAP Injection since is not properly sanitizing the 'username' POST parameter. An attacker can manipulate this paramter to dump arbitrary contents form the LDAP Database...

pGina 安全漏洞

pGina is an open source Windows authentication tool from the individual developer Hans Wurst. A security vulnerability exists in pGina version 3.9.9.12 and earlier, which stems from the HttpAuth plugin that can bypass authentication when DNS resolution is controlled...

CVE-2025-24996

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

Microsoft NTLM 安全漏洞

Microsoft NTLM is a Microsoft USA authentication protocol used on networks including systems running the Windows operating system as well as standalone systems. A security vulnerability exists in Microsoft NTLM. An attacker could exploit the vulnerability to perform spoofing attacks. The followin...

Exploits and vulnerabilities in Q4 2024

Q4 2024 saw fewer published exploits for Windows and Linux compared to the first three quarters. Although the number of registered vulnerabilities continued to rise, the total number of Proof of Concept PoC instances decreased compared to 2023. Among notable techniques in Q4, attackers leveraged...

The vulnerability of the Windows operating system’s Network Authentication Protocol NTLM implementation allows a perpetrator to compromise the confidentiality of protected information.

The vulnerability of the Windows operating system’s Network Authentication Protocol NTLM implementation is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality of the protected information...

DEBIAN-CVE-2025-21311

Windows NTLM V1 Elevation of Privilege Vulnerability...

UBUNTU-CVE-2025-21311

Windows NTLM V1 Elevation of Privilege Vulnerability...

PT-2025-49180

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.30 through 2.4.65 Description An integer overflow occurs during failed ACME certificate renewal. After approximately 30 days of failures with default configurations, the backoff timer reaches zero. Subsequent...

NTP Timeroast

Windows authenticates NTP requests by calculating the message digest using the NT hash followed by the first 48 bytes of the NTP message all fields preceding the key ID. An attacker can abuse this to recover hashes that can be cracked offline for machine and trust accounts. The attacker must know...

PT-2024-9749

Name of the Vulnerable Software and Affected Versions systeminformation versions prior to 5.23.7 Description The issue is related to the getWindowsIEEE8021x function in the systeminformation library for node.js, where SSIDs are not sanitized before being passed as a parameter to cmd.exe. This...

httpd: SSRF in Apache HTTP Server on Windows

A flaw was found in httpd on Windows systems. This issue potentially allows NTLM hashes to be leaked to a malicious server via Server-side request forgery SSRF and malicious requests or content...

The vulnerability of the Authentication component of the Windows operating system, which allows a perpetrator to disclose protected information

The vulnerability of the Authentication component in the Windows operating system is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a attacker to disclose sensitive information that is protected by security measures...

CVE-2024-38254

Windows Authentication Information Disclosure Vulnerability...

CVE-2024-38254 Windows Authentication Information Disclosure Vulnerability

...

PT-2024-6254 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a component of the Windows operating system's authentication mechanism, specifically involving the use of an uninitialized resource. This can allow an attacker to...

Error: "The Login is from an Untrusted Domain and Cannot be used with Windows Authentication" Appears when Launching Provisioning Services Console

When launching the Provisioning Services Console, the critical error message appears, “Critical Error A database error occurred. Login failed. The login is from an untrusted domain and cannot be used with Windows authentication.”...

PT-2024-4969 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A spoofing vulnerability affects the system, potentially allowing attackers to perform spoofing attacks due to a lack of protection of service data within the Windows NTLM authentication...

The vulnerability of the PAN-OS operating system, related to errors in syntax validation during input processing, allows attackers to trigger service failures.

The vulnerability of the PAN-OS operating system is related to errors in syntax validation during input processing. Exploiting this vulnerability allows a malicious actor to trigger a service failure using specially created Windows New Technology LAN Manager NTLM packets from Windows servers...

The vulnerability of the Windows Authentication component in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Windows Authentication component in Windows operating systems is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow attackers to enhance their privileges...