Microsoft Windows ADFS Remote Code Execution Vulnerability (971726) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS09-070.

Impact

Successful exploitation will allow remote attackers to take complete control of the victim's system. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://www.microsoft.com/technet/security/bulletin/ms09-070.mspx

Insight

The vulnerability is due to incorrect validation of request headers when an authenticated user connects to an ADFS enabled Web Server. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Affected

Microsoft Windows 2K3 Service Pack 2 and prior. Microsoft Windows Server 2008 Service Pack 2 and prior.

References

http://secunia.com/advisories/37542/
http://support.microsoft.com/kb/971726
http://www.microsoft.com/technet/security/bulletin/MS09-070.mspx
http://www.vupen.com/english/advisories/2009/3434

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-2508, CVE-2009-2509

CVSS	Base Score: 9.0 AV:N/AC:L/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Microsoft DirectShow Remote Code Execution Vulnerability (961373)
Microsoft .NET Framework and Silverlight Remote Code Execution Vulnerability (2514842)
Microsoft Internet Explorer HTML Rendering Remote Memory Corruption Vulnerability (944533)
Microsoft DHTML Editing Component ActiveX Remote Code Execution Vulnerability (956844)
Microsoft Internet Explorer Multiple Memory Corruption Vulnerabilities (2879017)

Take action and discover your vulnerabilities