Microsoft releases mitigations for a Windows NT LAN Manager exploit that forces remote Windows systems to reveal password hashes that can be easily cracked. The PetitPotam bug is tied to the Windows operating system and the abuse of a remote access protocol called Encrypting File System Remote Protocol (MS-EFSRPC) Microsoft recommends disabling NTLM authentication on Windows domain controllers and enabling Extended Protection for Authentication (EPA) feature on AD CS services. Microsoft also added that companies are vulnerable to a Petit potam attack if NTLm authentication is enabled in their domains.
Source: https://threatpost.com/microsoft-petitpotam-poc/168163/