all InfoSec news
Micropatches for Leaking NTLM Credentials Through Windows Themes (CVE-2024-21320)
Malware Analysis, News and Indicators - Latest topics malware.news
January 2024 Windows Updates brought a patch for CVE-2024-21320, a privilege escalation vulnerability in Windows. The vulnerability allows a remote attacker to acquire user's NTLM credentials when the victim simply downloads a Theme file or views such file in a network folder.
Security researcher Tomer Peled of Akamai discovered this issue, reported it to Microsoft, and later published a detailed article along with a proof of concept.
These allowed us to reproduce the issue and create a micropatch …
akamai a network attacker credentials cve cve-2024 downloads escalation file folder issue january january 2024 network ntlm patch privilege privilege escalation researcher security security researcher theme tomer peled updates victim vulnerability windows windows themes windows updates