NTLMv2

Discovered in 1997 by Aaron Spangler and never fixed, the WinNT/Win95 Automatic Authentication Vulnerability (IE Bug #4) is certainly an excellent vintage. In Windows 8 and 10, the same bug has now been found to potentially leak the user’s Microsoft Live account login and (hashed) password information, which is also used to access OneDrive, Outlook, Office, Mobile, Bing, Xbox Live, MSN and Skype (if used with a Microsoft account).

Continue reading “Microsoft Live Account Credentials Leaking From Windows 8 And Above” →

Hackaday

1 Articles

Microsoft Live Account Credentials Leaking From Windows 8 And Above

Search

Never miss a hack

If you missed it

Remembering Peter Higgs And The Gravity Of His Contributions To Physics

Chandra X-ray Observatory Threatened By Budget Cuts

In A Twist, Humans Take Jobs From AI

Heating Mars On The Cheap

Where Graph Theory Meets The Road: The Algorithms Behind Route Planning

Our Columns

Retrotechtacular: The Other Kind Of Fallout Show

Logic Analyzers: Decoding And Monitoring

Hackaday Links: April 14, 2024

Hackaday Podcast Episode 266: A Writer’s Deck, Patching Your Battleship, And Fact-Checking The Eclipse

This Week In Security: BatBadBut, DLink, And Your TV Too

Search

Never miss a hack

Subscribe

If you missed it

Our Columns