SMB hash hijacking & user tracking in MS Outlook Brief description
In Summary : Microsoft (MS) Outlook could be abused to send SMB handshakes externally after a victim opened or simply viewed an email. A ...
https://updatesinfosec.blogspot.com/2018/05/smb-hash-hijacking-user-tracking-in-ms.html
In Summary :
Microsoft (MS) Outlook could be abused to send SMB handshakes externally after a victim opened or simply viewed an email. A WebDAV request was sent even when the SMB port was blocked. This could be used to crack a victim’s password when the SMB hash was sent externally, or to receive a notification when an email had been viewed by a victim.This issue was partially patched in July [...]
kindly refer the following link as follow up :
https://ift.tt/2KbJ6tF
Microsoft (MS) Outlook could be abused to send SMB handshakes externally after a victim opened or simply viewed an email. A WebDAV request was sent even when the SMB port was blocked. This could be used to crack a victim’s password when the SMB hash was sent externally, or to receive a notification when an email had been viewed by a victim.This issue was partially patched in July [...]
kindly refer the following link as follow up :
https://ift.tt/2KbJ6tF
