Researchers at Preempt discovered three logical flaws in Microsoft’s NTLM authentication protocol. A successful exploit would allow an attacker to read all users emails; authenticate to any cloud resource controlled by ADFS; remotely execute code on any machine the victim has privileges on; and modify various network configuration to create backdoors. Microsoft has issued patches for the two bugs as part of its June Patch Tuesday Update. Microsoft ranks both as important but Preempt researchers said they considered the bugs to be critical.
Source: https://threatpost.com/critical-microsoft-rce-bugs-windows/145572/