Trend Micro Security

MS14-016:Security Account Manager Remote (SAMR) プロトコルの脆弱性により、セキュリティ機能のバイパスが起こる (2934418)

2014年3月12日
  危険度: :
  CVE識別番号: CVE-2014-0317

  概要

This security update resolves one privately reported vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker makes multiple attempts to match passwords to a username.

  トレンドマイクロの対策

  対応方法

  影響を受けるソフトウェア

  • Windows XP Service Pack 3 (With Active Directory Application Mode installed)
  • Windows Server 2003 Service Pack 2 (With Active Directory Application Mode installed)
  • Windows Server 2003 x64 Edition Service Pack 2 (With Active Directory Application Mode installed)
  • Windows Vista x64 Edition Service Pack 2 (With Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2008 for 32-bit Systems Service Pack 2 (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2008 for x64-based Systems Service Pack 2 (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1 (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2012 (With Active Directory installed)
  • Windows Server 2012 R2 (With Active Directory installed)
  • Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) (With Active Directory or Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows XP Professional x64 Edition Service Pack 2 (With Active Directory Application Mode installed)
  • Windows Server 2003 Service Pack 2 (With Active Directory installed)
  • Windows Server 2003 x64 Edition Service Pack 2 (With Active Directory installed)
  • Windows Server 2003 with SP2 for Itanium-based Systems (With Active Directory installed)
  • Windows Vista Service Pack 2 (With Active Directory Lightweight Directory Service (AD LDS) installed)
  • Windows Server 2012 (Server Core installation) (With Active Directory installed)
  • Windows Server 2012 R2 (Server Core installation) (With Active Directory installed)