Stormshield SNS protections for Windows Netlogon Remote Code Execution (CVE-2026-41089)

The vulnerability tracked as CVE-2026-41089. It allows an attacker to execute code as SYSTEM in LSASS process.

Stormhield Network Security (SNS) appliance protects you from that attack, thanks to an existing IPS alarm.

IDName
ldap_udp:client.1buffer overflow in the NetLogon service of Windows Server Domain Controllers