SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Directory)  >   Microsoft Active Directory Vendors:   Microsoft
Microsoft Active Directory CRL Validation Flaw Lets Remote Users Bypass Authentication
SecurityTracker Alert ID:  1026294
SecurityTracker URL:  http://securitytracker.com/id/1026294
CVE Reference:   CVE-2011-2014   (Links to External Site)
Date:  Nov 8 2011
Impact:   Execution of arbitrary code via network, Host/resource access via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in Microsoft Active Directory. A remote user can bypass authentication on the target system in certain cases.

The software does not properly validate certificates against the certificate revocation list (CRL). A remote user with access to a previously revoked certificate can authenticate to the associated Active Directory domain and gain access to network resources or execute arbitrary code with the privileges of the certificate's user.

Active Directory Application Mode (ADAM) and Active Directory Lightweight Directory Service (AD LDS) are also affected.

Xavier Lassoie and Sebastien Godard of Autosecurite reported this vulnerability.

Impact:   A remote user can bypass authentication on the target system in certain cases.
Solution:   The vendor has issued the following fixes:

Active Directory Application Mode (ADAM):

http://www.microsoft.com/downloads/details.aspx?familyid=8c7c21c5-677d-4a5d-8f2b-8ca7691b6b00

Active Directory Application Mode (ADAM):

http://www.microsoft.com/downloads/details.aspx?familyid=989cca2d-cce1-4f52-b50e-43152693f240

Active Directory:

http://www.microsoft.com/downloads/details.aspx?familyid=08b27ce7-c32e-41e4-ad04-481c5eab17a7

Active Directory:

http://www.microsoft.com/downloads/details.aspx?familyid=de5a74f2-2cc8-4677-b495-3a40fe3d6b9e

Active Directory:

http://www.microsoft.com/downloads/details.aspx?familyid=6168bc67-3d59-450f-bd8a-02d61dabe16b

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=2bd602cf-ae0d-4790-a5d0-6133fd7d01a0

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=783521ad-5c50-4194-a582-4e5a1c9999e7

Active Directory and Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=b5688923-3914-4f6c-8bc9-036fb4870cc6

Active Directory and Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=51f47181-08f6-4de1-80e5-253355675965

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=b06f9f55-e3b2-4705-83d0-1b9f5de9d378

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=b06f9f55-e3b2-4705-83d0-1b9f5de9d378

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=790f1d99-96a5-438d-b433-895b692912ce

Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=790f1d99-96a5-438d-b433-895b692912ce

Active Directory and Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=cc1e99af-fc67-400b-a82c-171f8c4d1ac9

Active Directory and Active Directory Lightweight Directory Service (AD LDS):

http://www.microsoft.com/downloads/details.aspx?familyid=cc1e99af-fc67-400b-a82c-171f8c4d1ac9

A restart is required.

The Microsoft advisory is available at:

http://technet.microsoft.com/en-us/security/bulletin/ms11-086

Vendor URL:  technet.microsoft.com/en-us/security/bulletin/ms11-086 (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (2003), Windows (2008), Windows (7), Windows (Vista), Windows (XP)
Underlying OS Comments:  XP SP3, 2003 SP2, 2008 R2 SP1, Vista SP2, 7 SP1, 2008 SP2; and prior service packs

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC