20 matches found
EUVD-2016-8097
Malware in sbrugna...
EUVD-2020-29383
Malware in sbrugna...
EUVD-2006-6963
Malware in sbrugna...
EUVD-2023-42348
Malicious code in bioql PyPI...
EUVD-2025-19133
Malicious code in bioql PyPI...
EUVD-2022-29650
Malicious code in bioql PyPI...
EUVD-2022-29633
Malicious code in bioql PyPI...
EUVD-2024-31570
Malicious code in bioql PyPI...
(0Day) Microsoft Edge PDF NTLM Response Information Disclosure Vulnerability
This vulnerability allows remote attackers to relay NTLM credentials on affected installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of lin...
CVE-2025-6444
ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
CVE-2025-6444
ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
CVE-2025-6444
The CVE-2025-6444 entry covers a vulnerability in ServiceStack where the GetErrorResponse method in ServiceStack.Text improperly validates user-supplied data, enabling NTLM credential relay. The flaw derives from a type confusion condition caused by insufficient input validation, allowing a remot...
PT-2025-26618 · Unknown · Servicestack
Name of the Vulnerable Software and Affected Versions: ServiceStack affected versions not specified Description: This issue allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. The specific flaw exists within the implementation of the GetErrorResponse metho...
ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability
This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation o...
CVE-2024-42019
A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication...
CVE-2018-16890
libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages lib/vauth/ntlm.c:ntlmdecodetype2target does not validate incoming data correctly and is subject to an integer overflow vulnerability. Using that...
cURL (libcurl) NTLM Authentication Code Buffer Overrun Vulnerability
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
USN-3275-2 openjdk-7 vulnerabilities
USN-3275-1 fixed vulnerabilities in OpenJDK 8. This update provides the corresponding updates for OpenJDK 7. Original advisory details: It was discovered that OpenJDK improperly re-used cached NTLM connections in some situations. A remote attacker could possibly use this to cause a Java applicati...
CVE-2012-3482
Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to 1 cause a denial of service crash and delayed delivery of inbound mail via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or 2 obtain sensitive informati...
Curl < 7.13.1 NTLM Stack-based Buffer Overflow
Binary data 2640.prm...