Home / bulletins MS15-005 - Important: Vulnerability in Network Location Awareness Service Could Allow Security Feature Bypass (3022777) - Version: 1.0
Posted on 14 January 2015
ImportantSeverity Rating: Important
Revision Note: V1.0 (January 13, 2015): V1.0 (January 13, 2015): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass by unintentionally relaxing the firewall policy and/or configuration of certain services when an attacker on the same network as the victim spoofs responses to DNS and LDAP traffic initiated by the victim.