SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER Microsoft Exchange Server NTLM relay attack attempt
This event is generated when an attempt is made to conduct an NTLM relay attack against Microsoft Exchange. Impact: Potential User Privilege Details: This rule looks for attempts to conduct an NTLM relay attack against Microsoft Exchange. Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-8581 |
Loading description
|
CVE-2019-0686 |
Loading description
|
CVE-2019-0724 |
Loading description
|