IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try to authenticate using the current user's session. The hostile server could capture the NTLM hash information to obtain the user's credentials. IBM X-Force ID: 279091.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html | Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2024/Feb/7 | Mailing List Third Party Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/279091 | VDB Entry |
https://www.ibm.com/support/pages/node/7116091 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
20 Sep 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-327 |
03 Apr 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
CWE |
16 Feb 2024, 21:38
Type | Values Removed | Values Added |
---|---|---|
First Time |
Ibm i Access Client Solutions
Ibm |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CPE | cpe:2.3:a:ibm:i_access_client_solutions:*:*:*:*:*:*:*:* | |
CWE | CWE-384 | |
References | () https://www.ibm.com/support/pages/node/7116091 - Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/279091 - VDB Entry | |
References | () http://seclists.org/fulldisclosure/2024/Feb/7 - Mailing List, Third Party Advisory | |
References | () http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html - Third Party Advisory, VDB Entry |
14 Feb 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Feb 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Feb 2024, 01:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-09 01:15
Updated : 2024-09-20 20:15
NVD link : CVE-2024-22318
Mitre link : CVE-2024-22318
CVE.ORG link : CVE-2024-22318
JSON object : View
Products Affected
ibm
- i_access_client_solutions