Microsoft Windows .library-ms Information Disclosure

Posted by deepcore on July 16, 2018 – 11:24 pm

Library description files are XML files that define libraries. Libraries aggregate items from local and remote storage locations into a single view in Windows Explorer. Library description files follow the Library Description schema and are saved as *.library-ms files. The .library-ms filetype triggers forced authentication when a user/client accesses a remote share that houses an attacker supplied “.library-ms” file, disclosing credential hashes and other identifiable computer informations.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Microsoft Windows Enterprise Mode Site List 1/2 XML Injection [webapps] Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Denial of Service »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Microsoft Windows .library-ms Information Disclosure

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL