MS15-040 - Important: Vulnerability in Active Directory Federation Services Could Allow...

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Messages
23,048
Severity Rating: Important
Revision Note: V1.0 (April 14, 2015): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Active Directory Federation Services (AD FS). The vulnerability could allow information disclosure if a user leaves their browser open after logging off from an application, and an attacker reopens the application in the browser immediately after the user has logged off.

Continue reading...
 


Back
Top