Skip to content
  • Home
    • All Categories
    • Individual Categories
  • Recent
  • Tags
  • Popular
Collapse
Hostrisk Security Platform

Hostrisk
    • Light
    • Cloudy
    • Dim
    • Dark (Warm)
    • Dark (Cold)
    • Dark (Edge)
  1. Home
  2. Categories
  3. Research
  4. Critical Remote Code Execution Vulnerability in SPNEGO Extended Negotiation Security Mechanism

Critical Remote Code Execution Vulnerability in SPNEGO Extended Negotiation Security Mechanism

Scheduled Pinned Locked Moved Research
research
1 Posts 1 Posters 23 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • CerberusC Offline
    CerberusC Offline
    Cerberus
    wrote on last edited by
    #1

    In September 2022, Microsoft patched an information disclosure vulnerability in SPNEGO NEGOEX (CVE-2022-37958). On December 13, Microsoft reclassified the vulnerability as “Critical” severity after IBM Security X-Force Red Security Researcher Valentina Palmiotti discovered the vulnerability could allow attackers to remotely execute code. The vulnerability is in the SPNEGO Extended Negotiation (NEGOEX) Security Mechanism, which allows […]

    The post Critical Remote Code Execution Vulnerability in SPNEGO Extended Negotiation Security Mechanism appeared first on Security Intelligence.

    https://securityintelligence.com/posts/critical-remote-code-execution-vulnerability-spnego-extended-negotiation-security-mechanism/

    DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above

    1 Reply Last reply
    0

© 2021-2023 hostrisk.com
Contact Consent Policies
  • Login
  • Login or register to search.
  • First post
    Last post
0
  • Home
    • All Categories
    • Individual Categories
  • Recent
  • Tags
  • Popular