Full title: Microsoft Windows .library-ms Information Disclosure Vulnerability 
Category: local exploits
Platform: windows
Library description files are XML files that define libraries. Libraries aggregate items from local and remote storage locations into a single view in Windows Explorer. Library description files follow the Library Description schema and are saved as *.library-ms files. The .library-ms filetype triggers forced authentication when a user/client accesses a remote share that houses an attacker supplied ".library-ms" file, disclosing credential hashes and other identifiable computer informations.

# 0day.today @ http://0day.today/