Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
08/11/2020
Created
08/12/2020
Added
08/11/2020
Modified
09/09/2024

Description

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), aka 'Netlogon Elevation of Privilege Vulnerability'.

Solution(s)

  • microsoft-windows-windows_server_2016-1607-kb4601318
  • microsoft-windows-windows_server_2019-1809-kb4601345
  • msft-kb4565351-4274f60c-bfeb-463c-9754-001689926626
  • msft-kb4565351-79b74e87-e7f9-446e-a595-b7e944725115
  • msft-kb4566782-912b8b41-c59a-4078-bfbf-fb69a4d8c0b3
  • msft-kb4571702-6737e598-09c1-4e5f-8d0f-fdf867035c34
  • msft-kb4571719-a8e134c1-b2bf-4b38-9bdf-300153658fc6
  • msft-kb4571723-218e6900-fb95-4be6-be8d-a246fbf73ad7
  • msft-kb4601315-2e652760-fd8c-4b28-bd36-dd352402f173
  • msft-kb4601319-d7760b05-5068-445c-bad9-5a652a5607af
  • msft-kb4601319-e9dc52b3-aff6-4e3e-934a-a4d425b11fde
  • msft-kb4601349-ed05cd9f-2c0a-4c01-a63e-ebd2f2406024
  • msft-kb4601357-2d79a176-d1c6-490a-926f-9b978229a388

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;