CVE-2020-17049Incorrect Authorization in Microsoft Windows Server 2008 R2 Service Pack 1

CWE-863Incorrect AuthorizationCWE-345Insufficient Verification of Data Authenticity9 documents7 sources
Severity
7.2HIGHNVD
CNA6.6
EPSS
26.7%
top 3.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Microsoft Windows Server 2008 R2 Service Pack 1Microsoft Windows Server 2008 Service Pack 2Microsoft Windows Server 2012+7 more
Timeline
PublishedNov 11
Latest updateSep 4

Description

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD). To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it. The update addresses this vulnerability by changing how the KDC validates service tickets used with KCD.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages11 packages

CVEListV5microsoft/windows_server_2008_service_pack_26.0.06.0.6003.21167
CVEListV5microsoft/windows_server_2008_r2_service_pack_16.1.06.1.7601.25661+1
NVDsamba/samba4.1.04.13.13+2
CVEListV5microsoft/windows_server_20126.2.06.2.9200.23409
CVEListV5microsoft/windows_server_201610.0.010.0.14393.4530

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

1
CVEList
Kerberos KDC Security Feature Bypass Vulnerability2020-11-11

📋Vendor Advisories

3
Palo Alto
PAN-SA-2024-0008 Informational Bulletin: Impact of OSS CVEs in PAN-OS2024-09-04
Microsoft
Kerberos KDC Security Feature Bypass Vulnerability2020-11-10
Red Hat
Kerberos: delegation constrain bypass in S4U2Proxy2020-11-10

🕵️Threat Intelligence

4
Unit42
Threat Brief: Kerberos KDC Security Feature Bypass Vulnerability (CVE-2020-17049 AKA Bronze Bit)2021-03-03
Unit42
Threat Brief: Kerberos KDC Security Feature Bypass Vulnerability (CVE-2020-17049 AKA Bronze Bit)2021-03-03
Crowdstrike
2021 April Patch Tuesday: Updates and Analysis
Crowdstrike
2021 April Patch Tuesday: Updates and Analysis