CVE-2017-12819
CVE-2017-12819
Remote manipulations with language pack updater lead to NTLM-relay attack for system user in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55.
Produtos afetados
Gemalto · Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTEQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://cert-portal.siemens.com/productcert/pdf/ssa-727467.pdfhttps://ics-cert.kaspersky.com/advisories/klcert-advisories/2017/10/02/klcert-17-005-sentinel-ldk-rte-remote-manipulations-with-language-pack-updater-lead-to-ntlm-relay-attack-for-system-user/https://ics-cert.us-cert.gov/advisories/ICSA-18-093-01