7 matches found
Security Flaw in Styra's OPA Exposes NTLM Hashes to Remote Attackers
Details have emerged about a now-patched security flaw in Styra's Open Policy Agent OPA that, if successfully exploited, could have led to leakage of New Technology LAN Manager NTLM hashes. "The vulnerability could have allowed an attacker to leak the NTLM credentials of the OPA server's local us...
CVE-2024-43532
Remote Registry Service Elevation of Privilege Vulnerability...
CVE-2024-43532
Remote Registry Service Elevation of Privilege Vulnerability...
CVE-2024-43532
creationtimestamp| type| source ---|---|--- 2024-10-08 17:54:47+00:00| seen| https://www.thezdi.com/blog/2024/10/8/the-october-2024-security-update-review 2024-10-20 16:48:45+00:00| published-proof-of-concept| https://t.me/HackerArsenal/580 2024-10-20 18:04:40+00:00| published-proof-of-concept|...
CVE-2024-43532 Remote Registry Service Elevation of Privilege Vulnerability
...
CVE-2024-43532
CVE-2024-43532 is a Remote Registry Service Elevation of Privilege vulnerability with a documented exploit path in a private GitHub post, alleging interception of NTLM data via RPC_A uthon level CONNECT and a Machine‑in‑the‑Middle attack against advapi32.dll behavior. Affected: Windows 10/11 and ...
KB5044286: Windows 10 LTS 1507 Security Update (October 2024)
The remote Windows host is missing security update 5044286. It is, therefore, affected by multiple vulnerabilities - Remote Desktop Client Remote Code Execution Vulnerability CVE-2024-43599 - Remote Registry Service Elevation of Privilege Vulnerability CVE-2024-43532 - Microsoft WDAC OLE DB...