Language:
Misconfigurations of Windows PKI objects in the Active Directory can lead to an elevation to administrator privileges from a standard account.
Certain Microsoft PKI parameters can significantly affect the security of the entire Active Directory and therefore require careful configuration.
Microsoft ADCS - Abusing PKI in Active Directory Environment