A vulnerability in the Active Directory forest trusts component of Microsoft Windows could allow an unauthenticated, remote attacker to escalate privileges on a targeted system.
The vulnerability is due to an improper default setting. An attacker in the trusting forest could exploit this vulnerability by using standard operations permitted by the setting to request delegation of a ticket-granting ticket (TGT) for an identity from the trusted forest. A successful exploit could allow the attacker to impersonate a user identity.
Microsoft confirmed the vulnerability and released software updates.
Security Impact Rating: Medium