CVE-2020-1013

Name of the Vulnerable Software and Affected Versions: Windows versions prior to the fixed version

Description: An elevation of privilege issue exists when Microsoft Windows processes group policy updates, related to insufficient access restrictions. This could allow a remote attacker to escalate permissions or perform additional privileged actions on the target machine. To exploit this, an attacker would need to launch a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target machine, potentially creating a group policy to grant administrator rights to a standard user. The security update addresses the vulnerability by enforcing Kerberos authentication for certain calls over LDAP.

Recommendations: To resolve the issue, apply the security update that enforces Kerberos authentication for certain calls over LDAP. As a temporary workaround, consider restricting access to group policy updates until the patch is applied. Avoid using vulnerable group policy features until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.