ACS Vulnerable to NTLM Hash Disclosure
CVE-2024-22318

5.5MEDIUM

Key Information:

Vendor: IBM
Status: I Access Client Solutions
Vendor: CVE Published:; 9 February 2024

Summary

IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try to authenticate using the current user's session. The hostile server could capture the NTLM hash information to obtain the user's credentials. IBM X-Force ID: 279091.

Affected Version(s)

i Access Client Solutions 1.1.2 <= 1.1.4

i Access Client Solutions 1.1.4.3 <= 1.1.9.4

References

https://www.ibm.com/support/pages/node/7116091

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/279091

vdb-entry

http://packetstormsecurity.com/files/177069/IBM-i-Access-...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 9, 2024
Vulnerability Reserved
Jan 8, 2024