LDAP & RDP Relay Vulnerabilities in NTLM – Demonstration

The Preempt research team discovered and reported two Microsoft NT LAN Manager (NTLM) vulnerabilities with LDAP and RDP relay. These vulnerabilities have a common theme around two different protocols handling NTLM improperly. These vulnerabilities can result in credential compromise and risk of password cracking, including potentially, domain compromise. This video will show a demonstration of how the two vulnerabilities could be exploited.