Delegation Threats: Deep Dive into Microsoft Patch of CVE-2020-17049 KCD Vulnerability
*****By Dor Segal, Security Researcher at Silverfort***** On November 11, 2020 Microsoft disclosed CVE-2020-17049, a new Kerberos Security Feature Bypass vulnerability. While the vulnerability itself will not be fixed before February 8th 2021, Microsoft has issued patches on November 8th and December 8th in order to mitigate its exploitation in the meantime. Very little was […]