Microsoft addresses several vulnerabilities in its September security bulletin. Trend Micro Deep Security covers the following:
- CVE-2020-0664 - Active Directory Information Disclosure Vulnerability
Risk Rating: ImportantThis information disclosure vulnerability exists in
- the mishandling of objects in memory by the Active Directory integrated DNS (ADIDNS). Attackers looking to take advantage of this vulnerability must be authenticated to send a specially crafted request to the ADIDNS service.
- CVE-2020-0856 - Active Directory Information Disclosure Vulnerability
Risk Rating: ImportantThis information disclosure vulnerability exists in the mishandling of objects in memory by the Active Directory integrated DNS (ADIDNS). Attackers looking to take advantage of this vulnerability must be authenticated to send a specially crafted request to the ADIDNS service.