CVE-2013-3185
published 2013-08-14CVE-2013-3185: Microsoft Active Directory Federation Services (AD FS) 1.x through 2.1 on Windows Server 2003 R2 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server…
PriorityP336medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
41.43%
98.5th percentile
Microsoft Active Directory Federation Services (AD FS) 1.x through 2.1 on Windows Server 2003 R2 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 allows remote attackers to obtain sensitive information about the service account, and possibly conduct account-lockout attacks, by connecting to an endpoint, aka "AD FS Information Disclosure Vulnerability."
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | httpd | — | — |
| microsoft | active_directory_federation_services | — | — |
| microsoft | active_directory_federation_services | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_apache4.3LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m49c-rgc9-hfgh: Microsoft Active Directory Federation Services (AD FS) 1
ghsa_unreviewed·2022-05-13
CVE-2013-3185 [MEDIUM] CWE-200 GHSA-m49c-rgc9-hfgh: Microsoft Active Directory Federation Services (AD FS) 1
Microsoft Active Directory Federation Services (AD FS) 1.x through 2.1 on Windows Server 2003 R2 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 allows remote attackers to obtain sensitive information about the service account, and possibly conduct account-lockout attacks, by connecting to an endpoint, aka "AD FS Information Disclosure Vulnerability."
Apache
Apache httpd: CVE-2015-3185
vendor_apache·CVSS 4.3
CVE-2015-3185 [LOW] Apache httpd: CVE-2015-3185
Apache httpd: CVE-2015-3185
A design error in the "ap_some_auth_required" function renders the API unusuable in httpd 2.4.x. In particular the API is documented to answering if the request required authentication but only answers if there are Require lines in the applicable configuration. Since 2.4.x Require lines are used for authorization as well and can appear in configurations even when no authentication is required and the request is entirely unrestricted. This could lead to modules using this API to allow access when they should otherwise not do so. API users should use the new ap_some_authn_required API added in 2.4.16 instead. Acknowledgements: This issue was reported by Ben Reser. Reported to security team 2013-08-05 Issue public 2015-06-09 Update 2.4.16 released 2015-07-15 Affect
No detection rules found.
No public exploits indexed.
Talos
Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes
blogs_talos·2013-08-13·CVSS 1.5
[LOW] Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes
## Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes
It's a pretty standard month for Update Tuesday this time around. There's a total of 8 bulletins, covering 23 CVE issues. This bulletin addresses the final 2 issues reported during CanSecWest's Pwn2Own .
As usual, there's the requisite IE bulletin ( MS13-059 ), which covers 11 CVEs. This includes the 1 open IE Pwn2Own issue. The issues cover IE6-IE10 on all versions of Windows. All issues were privately reported to Microsoft, so they haven't been exploited in the wild yet. Several vulnerabilities are the result of a use-after-free, but there's also a stack-based buffer overflow when handling a specific font type ( CVE-2013-3181 ).
This month we also have another font issue ( MS13-060 ), this time in a Unic
Talos
Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes
blogs_talos·2013-08-13·CVSS 1.5
[LOW] Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes
It's a pretty standard month for Update Tuesday this time around. There's a total of 8 bulletins, covering 23 CVE issues. This bulletin addresses the final 2 issues reported during CanSecWest's Pwn2Own.
As usual, there's the requisite IE bulletin (MS13-059), which covers 11 CVEs. This includes the 1 open IE Pwn2Own issue. The issues cover IE6-IE10 on all versions of Windows. All issues were privately reported to Microsoft, so they haven't been exploited in the wild yet. Several vulnerabilities are the result of a use-after-free, but there's also a stack-based buffer overflow when handling a specific font type (CVE-2013-3181).
This month we also have another font issue (MS13-060), this time in a Unicode font. The vulnerability is only present in XP SP3, XP Professional 64-bit and Windows
http://www.us-cert.gov/ncas/alerts/TA13-225Ahttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-066https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18318http://www.us-cert.gov/ncas/alerts/TA13-225Ahttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-066https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18318
2013-08-14
Published