Two NTLM vulnerabilities may allow full AD domain compromise

On October 2019 Patch Tuesday, Microsoft released patches for CVE-2019-1166 and CVE-2019-1338, two serious vulnerabilities that may leading to a full Active Directory domain compromise. Two researchers from Preempt,  Yaron Zinar and Marina Simakov, discovered two security vulnerabilities in Microsoft’s NTLM authentication protocol that may allow attackers to bypass the MIC (Message Integrity Code) protection and downgrade […]