mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-23 23:14:03 +02:00
0xMarcio
17 KiB
17 KiB
CVE-2019-1006
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
Description
An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.
POC
Reference
No PoCs from references.