37 matches found
EUVD-2017-4356
Malware in sbrugna...
EUVD-2022-35021
Malicious code in bioql PyPI...
EUVD-2024-26842
Malicious code in bioql PyPI...
ServiceStack 输入验证错误漏洞
ServiceStack is an API for building high-performance web services from ServiceStack, Inc. An input validation error vulnerability exists in ServiceStack that stems from the GetErrorResponse method not properly validating user input, which could lead to an NTLM credential relay attack...
CVE-2022-24853
Metabase is an open source business intelligence and analytics application. Metabase has a proxy to load arbitrary URLs for JSON maps as part of our GeoJSON support. While we do validation to not return contents of arbitrary URLs, there is a case where a particularly crafted request could result ...
CVE-2022-2780
In affected versions of Octopus Server it is possible to use the Git Connectivity test function on the VCS project to initiate an SMB request resulting in the potential for an NTLM relay attack...
Jupyter server on Windows discloses Windows user password hash
Summary Jupyter Server on Windows has a vulnerability that lets unauthenticated attackers leak the NTLMv2 password hash of the Windows user running the Jupyter server. An attacker can crack this password to gain access to the Windows machine hosting the Jupyter server, or access other...
CVE-2024-35178
The Jupyter Server provides the backend for Jupyter web applications. Jupyter Server on Windows has a vulnerability that lets unauthenticated attackers leak the NTLMv2 password hash of the Windows user running the Jupyter server. An attacker can crack this password to gain access to the Windows...
CVE-2024-35178
CVE-2024-35178 affects Jupyter Server on Windows, where unauthenticated attackers can leak the NTLMv2 password hash of the Windows user running the server. This can enable cracking the hash to gain access to the host or other networked systems, or allow NTLM relay-style access to additional machi...
CVE-2024-35178 Jupyter server on Windows discloses Windows user password hash
The Jupyter Server provides the backend for Jupyter web applications. Jupyter Server on Windows has a vulnerability that lets unauthenticated attackers leak the NTLMv2 password hash of the Windows user running the Jupyter server. An attacker can crack this password to gain access to the Windows...
PT-2024-1645
Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server versions prior to 2019 Cumulative Update 14 Description The vulnerability in Microsoft Exchange Server allows attackers to escalate privileges in NTLM relay attacks, potentially leading to unauthorized access to...
The March 2023 Patch Tuesday Security Update Review
Microsoft has released its monthly security update for March 2023. This months updates addressed various vulnerabilities in different products. Lets go through this months Patch Tuesday details and discuss the security updates. Microsoft Patches for March 2023 Microsoft has addressed 101...
CVE-2022-2780
In affected versions of Octopus Server it is possible to use the Git Connectivity test function on the VCS project to initiate an SMB request resulting in the potential for an NTLM relay attack...
Cross site request forgery (csrf)
In affected versions of Octopus Server it is possible to use the Git Connectivity test function on the VCS project to initiate an SMB request resulting in the potential for an NTLM relay attack...
PT-2022-18595 · Unknown · Octopus Server
Name of the Vulnerable Software and Affected Versions: Octopus Server affected versions not specified Description: The issue allows an attacker to use the Git Connectivity test function on the VCS project to initiate an SMB request, potentially leading to an NTLM relay attack. Recommendations: At...
CVE-2022-2780
In affected versions of Octopus Server it is possible to use the Git Connectivity test function on the VCS project to initiate an SMB request resulting in the potential for an NTLM relay attack...
DFSCoerce, a new NTLM relay attack, can take control over a Windows domain
A researcher has published a Proof-of-Concept PoC for an NTLM relay attack dubbed DFSCoerce. The method leverages the Distributed File System: Namespace Management Protocol MS-DFSNM to seize control of a Windows domain. Active Directory A directory service is a hierarchical arrangement of objects...
New NTLM Relay Attack Lets Attackers Take Control Over Windows Domain
A new kind of Windows NTLM relay attack dubbed DFSCoerce has been uncovered that leverages the Distributed File System DFS: Namespace Management Protocol MS-DFSNM to seize control of a domain. "Spooler service disabled, RPC filters installed to prevent PetitPotam and File Server VSS Agent Service...
CVE-2022-24853
Metabase is an open source business intelligence and analytics application. Metabase has a proxy to load arbitrary URLs for JSON maps as part of our GeoJSON support. While we do validation to not return contents of arbitrary URLs, there is a case where a particularly crafted request could result ...
Input validation
Metabase is an open source business intelligence and analytics application. Metabase has a proxy to load arbitrary URLs for JSON maps as part of our GeoJSON support. While we do validation to not return contents of arbitrary URLs, there is a case where a particularly crafted request could result ...