CVE-2009-2508
Title: Microsoft Windows Server 2008
Proof Of Concept
No public PoC currently indexed for CVE-2009-2508.
Vulnerability Summary
CVE-2009-2508: The single sign-on implementation in Active Directory Federation Services (ADFS) in Microsoft Windows Server 2003 SP2 and Server 2008 Gold and SP2 does not properly remove credentials at the end of a network session, which allows physically proximate attackers to obtain the credentials of a previous user of the same web browser by using data from the browser's cache, aka "Single Sign On Spoofing in ADFS Vulnerability."
Impacted Vendors
Reference Links
AV:L/AC:M/Au:N/C:C/I:C/A:C
Associated Attack Patterns (CAPEC)
Total: PatternsNo specific attack patterns mapped.
CVE-2009-2508 Exploits & PoCs (Proof Of Concept)
No public PoCs found in our database for this CVE.
Vulnerability data updated via NVD.
Vulnerability data or affected products updated.
Vulnerability first announced in NVD.
Attack Vector Matrix
AV:L/AC:M/Au:N/C:C/I:C/A:C
Affected Stack
No specific products linked.