Oval Definition:oval:org.mitre.oval:def:6441
Revision Date:2014-03-03Version:21
Title:Remote Code Execution in ADFS Vulnerability
Description:Active Directory Federation Services (ADFS) in Microsoft Windows Server 2003 SP2 and Server 2008 Gold and SP2 does not properly validate headers in HTTP requests, which allows remote authenticated users to execute arbitrary code via a crafted request to an IIS web server, aka "Remote Code Execution in ADFS Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-2509
Platform(s):Microsoft Windows Server 2003
Microsoft Windows Server 2008
Product(s):
Definition Synopsis
  • Windows Server 2003 x86/x64 SP2
  • Microsoft Windows Server 2003 SP2 (x64) is installed
  • OR Microsoft Windows Server 2003 SP2 (x86) is installed
  • AND the system is being used as: Member Server, BDC or PDC (DomainRole is 3, 4 or 5)
  • AND the version of System.web.security.singlesignon.dll is less than 5.2.3790.4578
  • OR Windows Server 2008 32-bit/x64/ia64 SP1 GDR
  • Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • AND the system is being used as: Member Server, BDC or PDC (DomainRole is 3, 4 or 5)
  • AND the version of System.web.security.singlesignon.dll is less than 6.0.6001.18311
  • AND the version of System.web.security.singlesignon.dll is greater than 6.0.6001.18000
  • OR Windows Server 2008 32-bit/x64/ia64 SP1 LDR
  • Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • AND the system is being used as: Member Server, BDC or PDC (DomainRole is 3, 4 or 5)
  • AND the version of System.web.security.singlesignon.dll is less than 6.0.6001.22498
  • AND the version of System.web.security.singlesignon.dll is greater than 6.0.6001.22000
  • OR Windows Server 2008 32-bit/x64 SP2 GDR
  • Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • AND the system is being used as: Member Server, BDC or PDC (DomainRole is 3, 4 or 5)
  • AND the version of System.web.security.singlesignon.dll is less than 6.0.6002.18091
  • AND the version of System.web.security.singlesignon.dll is greater than 6.0.6002.18000
  • OR Windows Server 2008 32-bit/x64 SP2 LDR
  • Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • AND the system is being used as: Member Server, BDC or PDC (DomainRole is 3, 4 or 5)
  • AND the version of System.web.security.singlesignon.dll is less than 6.0.6002.22201
  • AND the version of System.web.security.singlesignon.dll is greater than 6.0.6002.22000
    • BACK