What You Need to Know About the Windows DNS Vulnerability - CVE-2020-1350

SANS Institute · Intermediate ·📰 AI News & Updates ·5y ago

Microsoft just released a patch for a critical risk vulnerability in their server implementation of DNS, known as Windows DNS Server: CVE-2020-1350. The vulnerability, known as SIGRed, allows an unauthenticated user to execute code with SYSTEM level privileges on the vulnerable server. As many organizations run the Windows DNS Server on their Active Directory Domain Controllers, this vulnerability can have a significant collateral impact on your internal systems. Microsoft Windows Server 2008 through 2019 are vulnerable. DNS is a fundamental network protocol used on a daily basis by all internet users. It is often called the "phonebook of the internet", translating domain names to IP addresses. There are many DNS server implementations available and the one we will discuss today is the Microsoft Windows DNS server which has a critical vulnerability: CVE-2020-1350. Other DNS Server implementations are not vulnerable. There is a workaround that does not require a reboot to implement. References: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350 https://support.microsoft.com/en-us/help/4569509/windows-dns-server-remote-code-execution-vulnerability https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin-exploiting-a-17-year-old-bug-in-windows-dns-servers/ Speaker: Jorge Orchilles @jorgeorchilles Jorge Orchilles has been involved in Information Technology since 2001. He began his career as a network and system administrator for a small private high school. Realizing his passion for IT, he founded The Business Strategy Partners in 2002 providing consulting services to residential, small, and medium businesses. While gaining work experience, he was a very involved, full-time student in Florida International University (FIU). He founded the FIU MIS Club and was later contracted to work on the University's Active Directory Migration Project. After successful and on time completion of the project, he was employed by

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from SANS Institute · SANS Institute · 0 of 60

← Previous Next →

SANS FOR610: Reverse Engineering Malware: Malware Analysis Tools & Techniques

SANS FOR610: Reverse Engineering Malware: Malware Analysis Tools & Techniques

SANS Institute Cybersecurity Training Customer Stories

SANS Institute Cybersecurity Training Customer Stories

SANS Institute UK Cyber Academy

SANS Institute UK Cyber Academy

SANS Institute UK Cyber Academy

SANS Institute UK Cyber Academy

CISSP® Prep Exam, MGT414, by SANS Institute

CISSP® Prep Exam, MGT414, by SANS Institute

SANS Institute's Rob Lee Discusses The OPM.GOV Hack on CNN

SANS Institute's Rob Lee Discusses The OPM.GOV Hack on CNN

Information Security Training from SANS Institute - Student Testimonials

Information Security Training from SANS Institute - Student Testimonials

SANS DFIR NetWars

SANS DFIR NetWars

Hack The Drone - SANS Cyber Academy UK

Hack The Drone - SANS Cyber Academy UK

SANS VetSuccess Immersion Academy

SANS VetSuccess Immersion Academy

SANS Cybersecurity Training, Certifications & Placement for Veterans

SANS Cybersecurity Training, Certifications & Placement for Veterans

The 2015 SANS Holiday Hack Challenge

The 2015 SANS Holiday Hack Challenge

SANS VetSuccess Academy: Hands-on Skills

SANS VetSuccess Academy: Hands-on Skills

SANS VetSuccess Academy Overview

SANS VetSuccess Academy Overview

SANS ICS Security Summit & Training 2017

SANS ICS Security Summit & Training 2017

Exploring the Unknown Industrial Control System Threat Landscape – SANS ICS Security Summit 2017

Exploring the Unknown Industrial Control System Threat Landscape – SANS ICS Security Summit 2017

WannaCry recap, patches, and analysis

WannaCry recap, patches, and analysis

If We’re Doing So Well at Cyber Security, Why Are We Still Doing So Poorly?

If We’re Doing So Well at Cyber Security, Why Are We Still Doing So Poorly?

Graduation Day - SANS HM Gov Cyber Retraining Academy

Graduation Day - SANS HM Gov Cyber Retraining Academy

Incentivizing ICS Security: The Case for Cyber Insurance – SANS ICS Security Summit 2017

Incentivizing ICS Security: The Case for Cyber Insurance – SANS ICS Security Summit 2017

SANS Data Breach Summit & Training 2017

SANS Data Breach Summit & Training 2017

SANS Secure DevOps Summit & Training 2017

SANS Secure DevOps Summit & Training 2017

How Threats Are Slipping In the Back Door - SANS ICS Security Summit 2017

How Threats Are Slipping In the Back Door - SANS ICS Security Summit 2017

SANS Webcast – Continuous Opportunity: DevOps & Security

SANS Webcast – Continuous Opportunity: DevOps & Security

SANS Cybersecurity Programs for the Department of Defense

SANS Cybersecurity Programs for the Department of Defense

SANS Pen Test HackFest Summit & Training 2017

SANS Pen Test HackFest Summit & Training 2017

SANS SIEM & Tactical Analytics Summit & Training

SANS SIEM & Tactical Analytics Summit & Training

If We’re Doing So Well, Why Are We Still Doing So Poorly? – SANS ICS Security Summit 2017

If We’re Doing So Well, Why Are We Still Doing So Poorly? – SANS ICS Security Summit 2017

ICS515: ICS Active Defense and Incident Response

ICS515: ICS Active Defense and Incident Response

Introducing the NEW SANS Pen Test Poster

Introducing the NEW SANS Pen Test Poster

SANS Institute - An Inside Look at the Newly Updated ICS515 Course

SANS Institute - An Inside Look at the Newly Updated ICS515 Course

SANS ICS Security Training, Munich, Germany

SANS ICS Security Training, Munich, Germany

SANS Automotive Summit Webcast

SANS Automotive Summit Webcast

Privesc Playground - SANS Pen Test HackFest Summit 2017

Privesc Playground - SANS Pen Test HackFest Summit 2017

Introduction to Reverse Engineering for Penetration Testers – SANS Pen Test HackFest Summit 2017

Introduction to Reverse Engineering for Penetration Testers – SANS Pen Test HackFest Summit 2017

Honey, Please Don’t Burn Down Your Office: Fun with Smart Home Automation

Honey, Please Don’t Burn Down Your Office: Fun with Smart Home Automation

SANS Security Operations Summit & Training 2018

SANS Security Operations Summit & Training 2018

Sh*t Happens! (But You Still Need to Drink the Water) – SANS ICS Summit 2018

Sh*t Happens! (But You Still Need to Drink the Water) – SANS ICS Summit 2018

ICS Threat Intelligence: Moving from the Unknowns to a Defended Landscape – SANS ICS Summit 2018

ICS Threat Intelligence: Moving from the Unknowns to a Defended Landscape – SANS ICS Summit 2018

You’re Probably Not Red Teaming (And Usually I’m Not, Either) – SANS ICS Summit 2018

You’re Probably Not Red Teaming (And Usually I’m Not, Either) – SANS ICS Summit 2018

A Sneak Peak at the New ICS410

A Sneak Peak at the New ICS410

Jumping Air Gaps – SANS ICS Summit 2018

Jumping Air Gaps – SANS ICS Summit 2018

Introduction to Linux

Introduction to Linux

Introduction to Malware Analysis

Introduction to Malware Analysis

You’re Probably Not Red Teaming (And Usually I’m Not, Either) Webcast by Deviant Ollam

You’re Probably Not Red Teaming (And Usually I’m Not, Either) Webcast by Deviant Ollam

Hacking your SOEL: SOC Automation and Orchestration – SANS Security Operations Summit 2018

Hacking your SOEL: SOC Automation and Orchestration – SANS Security Operations Summit 2018

Hunting for Post-Exploitation Stage Attacks with Elastic Stack and the MITRE ATT&CK Framework

Hunting for Post-Exploitation Stage Attacks with Elastic Stack and the MITRE ATT&CK Framework

Apples and Oranges?: A CompariSIEM – SANS Security Operations Summit 2018

Apples and Oranges?: A CompariSIEM – SANS Security Operations Summit 2018

SANS Webcast - Perimeter Security and Why it is Obsolete

SANS Webcast - Perimeter Security and Why it is Obsolete

SANS Webcast - Trust No One: Introducing SEC530: Defensible Security Architecture

SANS Webcast - Trust No One: Introducing SEC530: Defensible Security Architecture

The Science of Security: The Psychological Impacts of Security Awareness Programs

The Science of Security: The Psychological Impacts of Security Awareness Programs

How I Pulled Off an Edgy Security Campaign – SANS Security Awareness Summit 2018

How I Pulled Off an Edgy Security Campaign – SANS Security Awareness Summit 2018

Practical Advice for Submitting to Speak at a Cybersecurity Conference

Practical Advice for Submitting to Speak at a Cybersecurity Conference

SANS Webcast - Consuming OSINT: Watching You Eat, Drink, and Sleep

SANS Webcast - Consuming OSINT: Watching You Eat, Drink, and Sleep

SANS Webcast - Zero Trust Architecture

SANS Webcast - Zero Trust Architecture

SANS STX Cyber Range

SANS STX Cyber Range

Part 1 – SANS Institute and Tenable talk about cloud security

Part 1 – SANS Institute and Tenable talk about cloud security

Related AI Lessons

5 Mistakes That Stop Beginners From Making Money With AI

Learn the common mistakes that prevent beginners from making money with AI and how to avoid them

Search has changed more than we think

The way we search has undergone significant changes, and it's essential to understand these shifts

Unraveling a Network-Based Attack: TryHackMe First Shift CTF — Task 7: The Crown Jewel

Learn to analyze network traffic and identify C2 channels, ARP spoofing, and data exfiltration techniques using Network Traffic Analysis and Forensics

Medium · Cybersecurity

Microsoft to Stop Sharing Revenue with Main AI Partner OpenAI

Microsoft will stop sharing revenue with OpenAI, its main AI partner, in a significant shift in their business relationship, impacting the AI and tech industries

Hacker News (AI)

The Secret Behind Mini Cooper’s Name 🤯 #shorts

Jacky Chou from Indexsy