6 matches found
RHEL 9 : libsoup (RHSA-2026:2216)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2216 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: Signed to Unsigned Conversion Error Leadi...
📄 Microsoft SharePoint 2019 NTLM Authentication Information Disclosure
Microsoft SharePoint Central Administration improperly exposes NTLM-authenticated endpoints to low-privileged or even brute-forced domain accounts. Once authenticated, an attacker can access the api/web endpoint, disclosing rich metadata about the SharePoint site, including user group...
AZL-7266 CVE-2019-17455 affecting package libntlm for versions less than 1.6-1
Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...
libcurl Buffer Overflow Vulnerability
libcurl is a free and easy to use client-side URL transport library . A buffer overflow vulnerability exists in lib/curlntlmcore.c in libcurlntlmcoremknthash in Libcurl 7.15.4 - 7.61.0. A remote user can exploit this vulnerability by sending a specially crafted NTLM authentication password to...
April 17, 2018—KB4093121 (Preview of Monthly Rollup)
April 17, 2018—KB4093121 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4093114 released April 10, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Windows Update...
USN-86-1: cURL vulnerability
infamous41md discovered a buffer overflow in cURL's NT LAN Manager NTLM authentication handling. By sending a specially crafted long NTLM reply packet, a remote attacker could overflow the reply buffer. This could lead to execution of arbitrary attacker specified code with the privileges of the...