September 2020 - Microsoft Releases Security Patches

Microsoft addresses several vulnerabilities in its September security bulletin. Trend Micro Deep Security covers the following:

  • CVE-2020-0664 - Active Directory Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in

    the mishandling of objects in memory by the Active Directory integrated DNS (ADIDNS). Attackers looking to take advantage of this vulnerability must be authenticated to send a specially crafted request to the ADIDNS service.
  • CVE-2020-0856 - Active Directory Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in the mishandling of objects in memory by the Active Directory integrated DNS (ADIDNS). Attackers looking to take advantage of this vulnerability must be authenticated to send a specially crafted request to the ADIDNS service.