Microsoft Active Directory Certificate Services NTLM Relay (CVE-2021-36942; CVE-2022-26925)
An NTLM relay vulnerability exists in Microsoft Active Directory Certificate Services. A remote attack can coerce Windows hosts to authenticate to other machines via the MS-EFSRPC protocol and obtain its NTLM credential. Successful exploitation could lead to complete takeover of the target domain...