PoC Released for NTLM reflection bypass Vulnerability that Emanbles SYSTEM Access on Windows Server

A newly released PoC exploits the CVE-2025-33073 vulnerability, allowing attackers to bypass NTLM reflection mitigations and gain SYSTEM access on Windows Server by leveraging SMB multiplexing and custom-port features. To mitigate this local privilege escalation, administrators are urged to enforce SMB signing, apply official Microsoft updates, and restrict privileged service outbound connections.