cve/2020/CVE-2020-1464.md

### [CVE-2020-1464](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1464)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201507&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201607&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201709%20for%2032-bit%20Systems&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201709&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201803&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201809&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%2032-bit%20Systems&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%20ARM64-based%20Systems&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%20x64-based%20Systems&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201909&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%202004&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%207%20Service%20Pack%201&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%207&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%208.1&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20%20Service%20Pack%202&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%20version%202004&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%2C%20version%201903%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%2C%20version%201909%20(Server%20Core%20installation)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%20publication%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.0.0%3C%20publication%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.1.0%3C%20publication%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.2.0%3C%20publication%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.3.0%3C%20publication%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Spoofing&color=brighgreen)

### Description

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.In an attack scenario, an attacker could bypass security features intended to prevent improperly signed files from being loaded.The update addresses the vulnerability by correcting how Windows validates file signatures.

### POC

#### Reference
- https://krebsonsecurity.com/2020/08/microsoft-put-off-fixing-zero-day-for-2-years/
- https://krebsonsecurity.com/2020/08/microsoft-put-off-fixing-zero-day-for-2-years/
- https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd
- https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/alphaSeclab/sec-daily-2020
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2020-1464](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1464)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201507&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201607&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201709%20for%2032-bit%20Systems&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201709&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201803&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201809&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%2032-bit%20Systems&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%20ARM64-based%20Systems&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201903%20for%20x64-based%20Systems&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201909&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%202004&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%207%20Service%20Pack%201&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%207&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%208.1&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20%20Service%20Pack%202&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%20version%202004&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%2C%20version%201903%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%2C%20version%201909%20(Server%20Core%20installation)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%20publication%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=6.0.0%3C%20publication%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=6.1.0%3C%20publication%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=6.2.0%3C%20publication%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=6.3.0%3C%20publication%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Spoofing&color=brighgreen)`

			`### Description`

			`A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.In an attack scenario, an attacker could bypass security features intended to prevent improperly signed files from being loaded.The update addresses the vulnerability by correcting how Windows validates file signatures.`

			`### POC`

			`#### Reference`
			`- https://krebsonsecurity.com/2020/08/microsoft-put-off-fixing-zero-day-for-2-years/`
Update CVE sources 2024-06-09 00:33 2024-06-09 00:33:16 +00:00			`- https://krebsonsecurity.com/2020/08/microsoft-put-off-fixing-zero-day-for-2-years/`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`- https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd`
Update CVE sources 2024-06-09 00:33 2024-06-09 00:33:16 +00:00			`- https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00
			`#### Github`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/Ostorlab/KEV`
			`- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors`
			`- https://github.com/alphaSeclab/sec-daily-2020`