MS14-077 - Important: Vulnerability in Active Directory Federation Services Could Allow...

Discussion in 'Security Alerts' started by News, Nov 12, 2014.

  1. News

    News Extraordinary Robot
    News Feed

    Jun 27, 2006
    Likes Received:
    Severity Rating: Important
    Revision Note: V1.0 (November 11, 2014): Bulletin published.
    Summary: This security update resolves a privately reported vulnerability in Active Directory Federation Services (AD FS). The vulnerability could allow information disclosure if a user leaves their browser open after logging off from an application, and an attacker reopens the application in the browser immediately after the user has logged off.

    Continue reading...

Share This Page