Home > News content

Microsoft fixes high-risk vulnerability in zerolog on: empowering domain administrators to take over enterprise network (Figure)

via:cnBeta.COM     time:2020/9/16 11:06:38     readed:64

System administrators believe that unless the software update is specifically to fix security vulnerabilities, then do not install immediately after the update. This is especially true in the case of windows update. However, it is recommended that users install the cumulative update released on Tuesday in the August patch as soon as possible, as it fixes a serious zerologon security vulnerability.

visit:

Alibaba cloud launched a special special event for colleges and Universities: 0 yuan experience of entry cloud computing rapid deployment Entrepreneurship Project

m2d306v0.jpg

Although the CVss score of the vulnerability is 10, the details have never been disclosed, which means that users and it administrators never realize how serious the vulnerability is.

Netlogon is an important functional component of windows. It is used for authentication of users and machines on the network within the domain, and replication of database for domain control backup. At the same time, it is also used to maintain the relationship between domain members and domains, between domains and domain controllers, and between domain DC and cross domain DC.

By forging an authentication token for a specific Netlogon function, he can call a function to set the computer password of the domain controller to a known value. The attacker can then use this new password to control the domain controller and steal the credentials of the domain administrator.

China IT News APP

Download China IT News APP

Please rate this news

The average score will be displayed after you score.

Post comment

Do not see clearly? Click for a new code.

User comments