CVE-2024-22318

MEDIUM

IBM i Access Client Solutions <1.1.2-1.1.4, <1.1.4.3-1.1.9.4 - Info...

Title source: llm

Description

IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try to authenticate using the current user's session. The hostile server could capture the NTLM hash information to obtain the user's credentials. IBM X-Force ID: 279091.

Exploits (1)

exploitdb WRITEUP

by hyp3rlinx · textremotewindows_x86-64

https://www.exploit-db.com/exploits/51817

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2024/Feb/7

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/279091

[Vendor Advisory] https://www.ibm.com/support/pages/node/7116091

Scores

CVSS v3 5.1

EPSS 0.0017

EPSS Percentile 37.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-327 CWE-384

Status published

Products (1)

ibm/i_access_client_solutions 1.1.2 - 1.1.4

Published Feb 09, 2024

Tracked Since Feb 18, 2026