SecurityHome.eu MS14-076 - Important: Vulnerability in Internet Information Services (IIS) Could Allow Security Feature Bypass (2982998)

Home / bulletins

MS14-076 - Important: Vulnerability in Internet Information Services (IIS) Could Allow Security Feature Bypass (2982998) - Version: 1.1
Posted on 20 December 2014
Important
Severity Rating: Important
Revision Note: V1.1 (December 19, 2014): V1.1 (December 19, 2014): Bulletin revised to include Windows 2012 Server Core installation and Windows 2012 R2 Server Core installation as affected software.
Summary: This security update resolves a privately reported vulnerability in Internet Microsoft Information Services (IIS) that could lead to a bypass of the "IP and domain restrictions" security feature. Successful exploitation of this vulnerability could result in clients from restricted or blocked domains having access to restricted web resources.
Link
Other versions
MS14-076 - Version: 1.0
MS14-076 - Version: 1.1

TOP

Bulletins :

4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 2.0 -
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0 -
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 1.0 -
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - 1.1
MS16-JUL Security Bulletin Summary for July 2016 - 2.0

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20