Microsoft CVE-2019-0975: ADFS Security Feature Bypass Vulnerability
7
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
07/09/2019
07/10/2019
07/09/2019
11/18/2021
Description
A security feature bypass vulnerability exists when Active Directory Federation Services (ADFS) improperly updates its list of banned IP addresses. To exploit this vulnerability, an attacker would have to convince a victim ADFS administrator to update the list of banned IP addresses. This security update corrects how ADFS updates its list of banned IP addresses.
Solution(s)
- msft-kb4507435-3adf123b-b79a-4c3b-8ca8-12d1ae6dd2fd
- msft-kb4507435-3c7e1698-7296-4ec8-90b1-8607410972c7
- msft-kb4507435-7b795c0d-b4d5-49ed-94be-687e9c81fea8
- msft-kb4507453-2e93d988-166a-4edf-811b-6bef2091599d
- msft-kb4507453-8cedcb21-0200-433d-b32d-2d5ef741adec
- msft-kb4507453-cf588052-676f-4530-8369-43c798c0c9e0
- msft-kb4507460-4b7e8790-e16d-4c77-b790-c08045983154
- msft-kb4507460-a528e8a9-d68e-4d64-91dd-65db127836ec
- msft-kb4507460-a9da78d9-858d-4639-b819-1723d2051c39
- msft-kb4507469-0784bfeb-5c3f-413c-8a87-494c8cca5348
- msft-kb4507469-7d86f1ff-3201-412f-b6f3-fa4aac792617
- msft-kb4507469-f95e51b9-03a6-4d85-aae7-86e48b69c96a
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center