Microsoft CVE-2020-0837: ADFS MFA Elevation of Privilege Vulnerability
Description
An elevation of privilege vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors. To exploit this vulnerability, an attacker could send a specially crafted authentication request. This security update corrects how ADFS handles multi-factor authentication requests.
Solution(s)
- msft-kb4570333-0e3dc4b3-4757-43e3-a5d4-bf64c1856363
- msft-kb4570333-29c3870f-41e5-4b7e-9359-08711b8ad66e
- msft-kb4570333-739f0c41-56d7-4c6d-b281-ae8cddd515e5
- msft-kb4571756-5b919d47-fce4-48a0-8d72-b3fc27b78f6e
- msft-kb4571756-7f9dc7dd-e107-4cde-a5c9-c82424dc0188
- msft-kb4571756-d9ae9dd6-1205-4639-be95-fc8ac95e9e8d
- msft-kb4574727-0eef97a6-edd8-47e9-b6c7-d2f66afcc6a1
- msft-kb4574727-12d4f3e2-1a12-4563-978b-96b1b621df36
- msft-kb4574727-1cbef2ba-180c-4af6-952c-677aa11a5779
- msft-kb4574727-48c91ab8-33a2-4dc3-96b2-9d75dc6c1f78
- msft-kb4574727-a14ba9ee-0c81-47f9-bbd2-cf987fbbf948
- msft-kb4574727-f7018f14-f8b1-44e1-97a3-9eb35850608b
- msft-kb4577015-6fa76bfe-50a8-4387-beba-0ab551736216
- msft-kb4577015-8fb3d8cd-fe1a-4152-9947-3bb4fe83b382
- msft-kb4577015-c3a56d50-56c4-4194-a672-93da34558a39
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center