Jump to content
Microsoft Windows Bulletin Board

MS12-083 - Important : Vulnerability in IP-HTTPS Component Could Allow Security Feature Bypass (2765

AWS

By AWS
in Security

 Share

Recommended Posts

  • Administrators
AWS Newbie

AWS

Posted
  • Administrators
Posted

Severity Rating: Important

Revision Note: V1.0 (December 11, 2012): Bulletin published.

Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker presents a revoked certificate to an IP-HTTPS server commonly used in Microsoft DirectAccess deployments. To exploit the vulnerability, an attacker must use a certificate issued from the domain for IP-HTTPS server authentication. Logging on to a system inside the organization would still require system or domain credentials.

 

View this security bulletin

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...