Marcos Díaz

**Name of the Vulnerable Software and Affected Versions** Windows Snipping Tool (affected versions not specified) **Description** An information disclosure issue in the Windows Snipping Tool allows remote attackers to capture NTLM authentication responses from users. This occurs when a victim is tricked into visiting a malicious webpage or opening a crafted link that invokes the application via the `ms-screenclip` or `ms-screensketch` URI schemes. The process triggers a connection to an attacker-controlled SMB server, causing Windows to silently send the user's NTLMv2 hash, which can then be cracked or relayed to gain unauthorized access to a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MashZone NextGen versions through 10.7 GA **Description** The issue concerns the HTTP client in MashZone NextGen, which deserializes untrusted data when it receives an HTTP response with a specific status code, 570. **Recommendations** For MashZone NextGen versions through 10.7 GA, update to a version that includes a fix for this issue to prevent the deserialization of untrusted data.

**Name of the Vulnerable Software and Affected Versions** MashZone NextGen versions through 10.7 GA **Description** The issue allows XXE attacks via a malicious XML configuration file, specifically through the "Register an Ehcache Configuration File" admin feature. **Recommendations** For MashZone NextGen versions through 10.7 GA, consider disabling the "Register an Ehcache Configuration File" admin feature until a patch is available to prevent XXE attacks.

**Name of the Vulnerable Software and Affected Versions** MashZone NextGen versions through 10.7 GA **Description** The issue allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occurs in the `com.idsscheer.ppmmashup.business.jdbc.DriverUploadController`. **Recommendations** For MashZone NextGen versions through 10.7 GA, consider disabling the `DriverUploadController` function until a patch is available to prevent the upload of malicious JDBC drivers. Restrict access to the admin console to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MashZone NextGen versions through 10.7 GA **Description** The issue allows an attacker to interact with arbitrary TCP services by abusing the feature to check the availability of a PPM connection. This occurs in the `com.idsscheer.ppmmashup.web.webservice.impl.ZPrestoAdminWebService` class. **Recommendations** For MashZone NextGen versions through 10.7 GA, consider restricting access to the `com.idsscheer.ppmmashup.web.webservice.impl.ZPrestoAdminWebService` class until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.