Microsoft Windows Server Security Discussions
 
Windows
(1)
Tomcat
(1)

IE NTLM vulnerability?

Asked By thathu
13-Nov-09 05:43 PM
Reply
I wrote a filter code on Tomcat to read the NTLM credentials from IE
and do a Base 64 decode and get the user-id. I noticed that when I
change IE NTLM settings to manually enter user-id and password, IE
lets me through with any user-id and does not validate the login I
enter against any source.

Is this a security hole?

It could be using cached credentials and automatically logging in.

Paul Baker [MVP, Windows Desktop Experience] replied to thathu
21-Dec-09 03:32 PM
Reply
It could be using cached credentials and automatically logging in. You
already authenticated yourself when you logged in to Windows, so this might
be okay.

I would check your "User Authentication" settings for the zone.

Paul
Previous Discussion:  Group Plicy domain member: Maximum machine account age
Post Question To EggHeadCafe