{"id":28631,"date":"2023-02-11T00:15:10","date_gmt":"2023-02-10T23:15:10","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=28631"},"modified":"2023-02-11T00:15:10","modified_gmt":"2023-02-10T23:15:10","slug":"localpotato-ntlm-authentication-vulnerability-cve-2023-21746","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2023\/02\/11\/localpotato-ntlm-authentication-vulnerability-cve-2023-21746\/","title":{"rendered":"LocalPotato NTLM Authentication Vulnerability (CVE-2023-21746)"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" title=\"Windows\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Windows-klein.jpg\" alt=\"Windows\" width=\"200\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2023\/02\/11\/details-zur-localpotato-ntlm-authentication-schwachstelle-cve-2023-21746\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]In mid-January 2023 month, I had pointed out a local NTLM authentication vulnerability (CVE-2023-21746) in my German blog post <a href=\"https:\/\/www.borncity.com\/blog\/2023\/01\/15\/nach-remotepotato0-kommt-die-windows-local-potato-ntlm-schwachstelle-cve-2023-21746\/\" target=\"_blank\" rel=\"noopener\">Nach RemotePotato0 kommt die Windows Local Potato NTLM-Schwachstelle (CVE-2023-21746)<\/a>. The two security researchers Andrea Pierini &amp;anAntonio Cocomazzi refer to this as LocalPotator, but had not disclosed details at the time. Now the security researcher has disclosed the details of this vulnerability within the article <a href=\"https:\/\/www.localpotato.com\/localpotato_html\/LocalPotato.html\" target=\"_blank\" rel=\"noopener\">LocalPotato &#8211; When Swapping The Context Leads You To SYSTEM<\/a>. Microsoft has already patched this vulnerability with the January 2023 updates for Windows.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]In mid-January 2023 month, I had pointed out a local NTLM authentication vulnerability (CVE-2023-21746) in my German blog post Nach RemotePotato0 kommt die Windows Local Potato NTLM-Schwachstelle (CVE-2023-21746). The two security researchers Andrea Pierini &amp;anAntonio Cocomazzi refer to this as &hellip; <a href=\"https:\/\/borncity.com\/win\/2023\/02\/11\/localpotato-ntlm-authentication-vulnerability-cve-2023-21746\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,2],"tags":[69,194],"class_list":["post-28631","post","type-post","status-publish","format-standard","hentry","category-security","category-windows","tag-security","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/28631","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=28631"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/28631\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=28631"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=28631"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=28631"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}