This article has been indexed from SANS Internet Storm Center, InfoCON: green
Phew, this was a really bad week for Microsoft (and a lot of reading for all of us). And just when we thought that the fiasco with the SAM hive was over, a new vulnerability popped up, which is much, much more dangerous unfortunately – it allows a user to completely take over a Windows domain that has the ADCS service running. And those are probably running in majority of enterprises.
Read the original article: Active Directory Certificate Services (ADCS – PKI) domain admin vulnerability, (Sat, Jul 24th)