(MS14-077) Vulnerability in Active Directory Federation Services Could Allow Information Disclosure (3003381)
Publish date: 14 de noviembre de 2014
Gravedad: High
Identificadores de CVE : CVE-2014-6331
Fecha recomendada: 14 de noviembre de 2014
Descripción
This update resolves the information disclosure vulnerability that exists in the Active Directory Federation Services versions 2.0, 2.1, and 3.0. The update focuses on resolving the flaw in the logoff process.
Soluciones
Software y versión afectados
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2012
- Windows Server 2012 R2
- Windows Server 2012 R2 (Server Core installation)