mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
17 KiB
17 KiB
CVE-2019-1006
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
%20&color=brightgreen)
Description
An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.
POC
Reference
No PoCs from references.