Published: 10/10/2019 Updated: 15/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Microsoft Windows could allow a remote malicious user to bypass security restrictions. By changing NTLM traffic via a man-in-middle attack, an attacker could exploit this vulnerability to force a downgrade to less-secure features.

Vulnerability Trend

Affected Products

Vendor Product Versions
MicrosoftWindows 7-
MicrosoftWindows Server 2008-, R2

Github Repositories

Vérification et détection des vulnérabilités NTLM via le protocole SMB.

Recent Articles

Microsoft Patch Tuesday – October 2019
Symantec Threat Intelligence Blog • Ratheesh PM • 09 Oct 2020

This month the vendor has patched 59 vulnerabilities, 9 of which are rated Critical.

Posted: 9 Oct, 201918 Min ReadThreat Intelligence SubscribeFollowtwitterfacebooklinkedinMicrosoft Patch Tuesday – October 2019This month the vendor has patched 59 vulnerabilities, 9 of which are rated Critical.This month the vendor has patched 59 vulnerabilities, 9 of which are rated Critical.

As always, customers are advised to follow these security best practices:

Install vendor patches as soon a...

New Microsoft NTLM Flaws May Allow Full Domain Compromise
BleepingComputer • Sergiu Gatlan • 09 Oct 2019

Two security vulnerabilities in Microsoft's NTLM authentication protocol allow attackers to bypass the MIC (Message Integrity Code) protection and downgrade NTLM security features leading to full domain compromise.
Microsoft patched the two NTLM flaws and issued security advisories as part of the Patch Tuesday security updates issued yesterday after Preempt’s disclosure.
Preempt researchers Yaron Zinar and Marina Simakov discovered that attackers can exploit these flaws as part ...

Microsoft's October 2019 Patch Tuesday Fixes 59 Vulnerabilities
BleepingComputer • Lawrence Abrams • 08 Oct 2019

Today is Microsoft's October 2019 Patch Tuesday, which means your Windows admins are not having a good day. So be particularly nice to them!
With the release of the October 2019 security updates, Microsoft has released 1 advisory (Windows 10 Servicing Stack Update) and updates for 59 vulnerabilities. Of these vulnerabilities, 8 are classified as Critical. 
All users should install these security updates as soon as possible in order to protect Windows from known security risks.<...