Lucene search
K

17 matches found

Exploit DB
Exploit DB
added 2026/05/29 12:0 a.m.53 views

Microsoft - NTLMv2 Hash Capture

Titles: Microsoft - NTLMv2 Hash Capture Author: nu11secur1ty Date: 2026-05-27 Vendor: Microsoft Software: Windows Shell File Explorer Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-32202 Description: A spoofing vulnerability in Windows Shell File Explorer allows an attacker to capture NTLMv...

4.3CVSS6AI score0.64095EPSS
Exploits3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9302

Malicious code in bioql PyPI...

7.7CVSS6.2AI score0.00158EPSS
Exploits0References6
Metasploit
Metasploit
added 2025/10/01 6:56 p.m.547 views

Right-Click Execution - Windows LNK File Special UNC Path NTLM Leak

This module creates a malicious Windows shortcut LNK file that specifies a special UNC path in EnvironmentVariableDataBlock of Shell Link .LNK that can trigger an authentication attempt to a remote server. This can be used to harvest NTLM authentication credentials. When a victim right-click the...

5.9AI score
Exploits0
Exploit DB
Exploit DB
added 2025/08/18 12:0 a.m.281 views

Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure

Exploit Title: Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure Date: 13/08/2025 Exploit Author: Ruben Enkaoua Author link: https://x.com/RubenLabs, https://github.com/rubenformation Original Blog: https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154/...

6.5CVSS7.4AI score0.58974EPSS
Exploits20
Packet Storm
Packet Storm
added 2025/06/25 12:0 a.m.172 views

📄 Microsoft Internet Shortcut Malicious URL

This Metasploit module exploits CVE-2025-33053 by generating a malicious .URL file pointing to a trusted LOLBAS binary with parameters designed to trigger unintended behavior. Optionally, a payload is generated and hosted on a specified WebDAV directory. When the victim opens the shortcut, it wil...

8.8CVSS8.2AI score0.81558EPSS
Exploits10
AlpineLinux
AlpineLinux
added 2025/04/01 1:15 p.m.2 views

CVE-2025-3033

After selecting a malicious Windows .url shortcut from the local filesystem, an unexpected file could be uploaded. This bug only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox 137 and Thunderbird 137...

7.7CVSS5.8AI score0.00158EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 1:15 p.m.2 views

CVE-2025-3033

After selecting a malicious Windows .url shortcut from the local filesystem, an unexpected file could be uploaded. This bug only affects Firefox on Windows. Other operating systems are unaffected. This vulnerability affects Firefox 137 and Thunderbird 137...

7.7CVSS5.8AI score0.00158EPSS
Exploits0References3
NVD
NVD
added 2025/04/01 1:15 p.m.13 views

CVE-2025-3033

After selecting a malicious Windows .url shortcut from the local filesystem, an unexpected file could be uploaded. This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability was fixed in Firefox 137 and Thunderbird 137...

7.7CVSS0.00158EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

Mozilla Firefox和Mozilla Thunderbird 安全漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open-source Web browser.Mozilla Thunderbird is a separate set of Mozilla Application Suite Email client software. The software supports IMAP, POP mail protocols, and HTML mail...

7.7CVSS6.1AI score0.00158EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2023/03/15 1:49 p.m.43 views

YoroTrooper Stealing Credentials and Information from Government and Energy Organizations

A previously undocumented threat actor dubbed YoroTrooper has been targeting government, energy, and international organizations across Europe as part of a cyber espionage campaign that has been active since at least June 2022. "Information stolen from successful compromises include credentials...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/19 1:1 p.m.5 views

New Research Delves into the World of Malicious LNK Files and Hackers Behind Them

Cybercriminals are increasingly leveraging malicious LNK files as an initial access method to download and execute payloads such as Bumblebee, IcedID, and Qakbot. A recent study by cybersecurity experts has shown that it is possible to identify relationships between different threat actors by...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/06/04 3:0 p.m.108 views

New LNK attack tied to Higaisa APT discovered

This post was authored by Hossein Jazi and Jérôme Segura On May 29th, we identified an attack that we believe is part of a new campaign from an Advanced Persistent Threat actor known as Higaisa. The Higaisa APT is believed to be tied to the Korean peninsula, and was first disclosed by Tencent...

Exploits0
CNVD
CNVD
added 2019/09/10 12:0 a.m.4 views

Microsoft Windows and Microsoft Windows Server Remote Code Execution Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A remote code execution vulnerability exists in Microsoft Windows and Microsoft Windows...

9.3CVSS8.2AI score0.17791EPSS
Exploits0References1
OSV
OSV
added 2019/08/14 9:15 p.m.2 views

CVE-2019-1188

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user...

7.5CVSS7.7AI score0.03766EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/14 12:0 a.m.4 views

Microsoft Windows LNK File Remote Code Execution Vulnerability

Microsoft Windows is a family of operating systems released by Microsoft Corporation in the United States. lnk files are a type of file used to point to other files. A remote code execution vulnerability exists in Microsoft Windows LNK files. A malicious binary file containing a malicious LNK fil...

9.3CVSS7.9AI score0.90026EPSS
Exploits20References1
Atlassian
Atlassian
added 2014/10/20 8:42 p.m.16 views

XSS in page editor via Shortcut links

Steps to reproduce: 1. add new shortcuts with default alias like "". 2. by typing searchterms@aliasname in page editor you can trigger XSS By replacing existing shortcut with malicious one, we can easily exploit multiple users using this functionality...

2.2AI score
Exploits0Affected Software1
Symantec
Symantec
added 2005/10/11 12:0 a.m.19 views

Microsoft Windows Malicious Shortcut Handling Remote Code Execution Variant Vulnerability

Description Microsoft Windows is prone to a remote code execution vulnerability when handling a malicious shortcut .lnk file. An attacker can exploit this issue by crafting a malicious file and placing it on a Web site or sending it to a user through email followed by enticing them to open it and...

1.3AI score
Exploits0References3Affected Software3
Rows per page
Query Builder