CVE-2017-0159

Published: Apr 12, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

A security feature bypass vulnerability exists in Windows 10 1607, Windows Server 2012 R2, and Windows 2016 when ADFS incorrectly treats requests coming from Extranet clients as Intranet requests, aka "ADFS Security Feature Bypass Vulnerability."

Vendor	Product	Versions
Microsoft Corporation	Windows	affected `Windows 10 1607, Windows Server 2012 R2, and Windows 2016`

References

97449

vdb-entry

x_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0159

x_refsource_CONFIRM

1038243

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-0159

Description

Affected Products

References