Microsoft “.library-ms” File / NTLM Information Disclosure (Resurrected 2025) – Full Disclosure
Posted by hyp3rlinx on Apr 26
[-] Microsoft “.library-ms” File / NTLM Information Disclosure
Spoofing (Resurrected 2025) / CVE-2025-24054
[+] John Page (aka hyp3rlinx)
[+] x.com/hyp3rlinx
[+] ISR: ApparitionSec
Back in 2018, I reported a “.library-ms” File NTLM information
disclosure vulnerability to MSRC and was told “it was not severe
enough”, that being said I post it anyways. Seven years passed, until
other researchers re-reported it….
– Read More – Full Disclosure