all InfoSec news
A zero-click vulnerability in Windows allows stealing NTLM credentials
Security Affairs securityaffairs.co
Researchers shared technical details about a flaw in Windows MSHTML platform, tracked as CVE-2023-29324, that could be abused to bypass security protections. Cybersecurity researchers have shared details about a now-patched security flaw, tracked as CVE-2023-29324 (CVSS score: 6.5), in Windows MSHTML platform. An attacker can exploit the vulnerability by crafting a malicious URL that would evade zone checks. “An attacker can […]
The post A zero-click vulnerability in Windows allows stealing NTLM credentials appeared first on Security Affairs.
breaking news bypass click credentials cve cvss cybersecurity exploit flaw hacking information security news it information security mshtml ntlm pierluigi paganini platform researchers score security security protections stealing technical vulnerability windows windows mshtml zero-click