Microsoft has released additional details on how to fully mitigate a security feature bypass vulnerability in Kerberos KDC (Key Distribution Center) patched during this month’s Patch Tuesday. The remotely exploitable security bug is tracked as CVE-2020-17049. The issue only impacts Windows Servers, Windows 10 devices, and vulnerable applications in enterprise environments. Microsoft also recommends taking extra steps before installing the update to mitigate the vulnerability on impacted domain controller servers. The company released out-of-band (OOB) updates to address the issue on all affected Windows Server versions from Windows Server 2012 up to Windows Server 20H2.
Source: https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-patching-guidance-for-kerberos-security-bug/