CVE ID
CVE-2021-36942
Vulnerability Name
Microsoft Windows Local Security Authority (LSA) Spoofing Vulnerability
- Project: Microsoft
- Product: Windows
Date
- Date Added: 2021-11-03
- Due Date: 2021-11-17
Description
Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability allowing an unauthenticated attacker to call a method on the LSARPC interface and coerce the domain controller to authenticate against another server using NTLM.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-36942
Related Security News
- Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft's July Patch
- Sharepoint ToolShell attacks targeted orgs across four continents
Top comments (0)