SecurityHome.eu MS15-122 - Important: Security Update for Kerberos to Address Security Feature Bypass (3105256)

Home / bulletins

MS15-122 - Important: Security Update for Kerberos to Address Security Feature Bypass (3105256) - Version: 1.1
Posted on 10 December 2015
There is an newer version: MS15-122 - Version: 1.2
Important
Severity Rating: Important
Revision Note: V1.1 (December 9, 2015): Revised bulletin to remove all references to the requirement that an attacker have physical access to the target machine to exploit CVE-2015-6095. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
Summary: This security update resolves a security feature bypass in Microsoft Windows. An attacker could bypass Kerberos authentication on a target machine and decrypt drives protected by BitLocker. The bypass can be exploited only if the target system has BitLocker enabled without a PIN or USB key.
Link
Other versions
MS15-122 - Version: 1.0
MS15-122 - Version: 1.1
MS15-122 - Version: 1.2

TOP

Bulletins :

4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 2.0 -
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0 -
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 1.0 -
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - 1.1
MS16-JUL Security Bulletin Summary for July 2016 - 2.0

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20