all InfoSec news
Outlook NTLM Leak | Tryhackme Writeup/Walkthrough | By Md Amiruddin
InfoSec Write-ups - Medium infosecwriteups.com
Leak password hashes from a user by sending them an email by abusing CVE-2023–23397.
Room Link : https://tryhackme.com/room/outlookntlmleak
Task 1 : Introduction
On Tuesday, March 14th, Microsoft released 83 security fixes on Patch Tuesday, including CVE-2023–23397. This critical vulnerability impacts all versions of the Outlook desktop app on any Windows system. Outlook web app (OWA) and Microsoft 365 aren’t vulnerable since they do not support NTLM authentication.
Unlike most exploits, this one is particularly dangerous because it is a zero-click …
cybersecurity infosec leak ntlm outlook security tryhackme tryhackme-walkthrough walkthrough writeup