Описание
Microsoft Windows 8.1, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 do not properly check NTLM SSO requests for MSA logins, which makes it easier for remote attackers to determine passwords via a brute-force attack on NTLM password hashes, aka "Microsoft Information Disclosure Vulnerability."
Ссылки
Уязвимые конфигурации
Одно из
EPSS
8.8 High
CVSS3
4.3 Medium
CVSS2
Дефекты
Связанные уязвимости
Microsoft Windows 8.1, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 do not properly check NTLM SSO requests for MSA logins, which makes it easier for remote attackers to determine passwords via a brute-force attack on NTLM password hashes, aka "Microsoft Information Disclosure Vulnerability."
Уязвимость операционной системы Windows, позволяющая нарушителю подобрать пароль
EPSS
8.8 High
CVSS3
4.3 Medium
CVSS2