Unrated severityNVD Advisory· Published Sep 11, 2020· Updated Aug 4, 2024
Active Directory Remote Code Execution Vulnerability
CVE-2020-0718
Description
A remote code execution vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account To exploit the vulnerability, an authenticated attacker could send malicious requests to an Active Directory integrated DNS (ADIDNS) server. The update addresses the vulnerability by correcting how Active Directory integrated DNS (ADIDNS) handles objects in memory.
Affected products
4- cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*Range: 6.2.0
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0718mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.