---

Critical Microsoft NTLM vulnerabilities allow remote code execution on any Windows machine

Researchers found two critical Microsoft vulnerabilities that consist of three logical flaws in NTLM, the company’s proprietary authentication protocol. These vulnerabilities allow attackers to remotely execute malicious code on any Windows machine or authenticate to any web server that supports Windows Integrated Authentication (WIA) such as Exchange or ADFS.

The research shows that all Windows versions are vulnerable.