April 28, 2016

"A vulnerability in Microsoft Office 365 SAML Service Provider implementation allowed for cross domain authentication bypass affecting all federated domains."

economy of mechanism: An attacker exploiting this vulnerability could gain unrestricted access to a victim's Office 365 account, including access to their email, files stored in OneDrive etc. by Ioannis Kakavas

'This vulnerability was jointly discovered by Klemen Bratec from Ĺ ola prihodnosti Maribor, and Ioannis Kakavas from Greek Research and Technology Network and this blog post is cross-posted here and on Klemen's blog.

'Microsoft fixed the vulnerability within 7 hours of our report and handled the disclosure process admirably.'

No comments: