KLA10557
Security bypass vulnerability in Active Directory
Updated: 06/01/2019
Detect date
?
04/14/2015
Severity
?
Critical
Description

Improper logoff handling was found in Microsoft Active Directory. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via workstation manipulations.

Affected products

Active Directory Federation Services version 3.0

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS15-040
CVE-2015-1638

Impacts
?
SB 
[?]
Related products
Microsoft Active Directory
CVE-IDS
?
Microsoft official advisories
Microsoft Security Update Guide
KB list

3045711