Windows Search Handler Enables Theft of NTLMv2 Hashes3. June 2026CybersecurityAn unpatched URI handler vulnerability in Windows Search allows attackers to extract NTLMv2 hashes and potentially gain access to Windows authentication tokens. Share on: