Vulnerability Protection

VULNERABILITY IN SECURITY ACCOUNT MANAGER REMOTE (SAMR) PROTOCOL COULD ALLOW SECURITY FEATURE BYPASS

Summary

A vulnerability in the way the Security Account Manager Remote (SAMR) protocol validates user lockout state may, if successfully exploited, cause this security feature to be bypassed.

Detailed Description


The Security Account Manager Remote (SAMR) protocol allows management of a directory of groups and users. A vulnerability in the way the SAMR validates user lockout state may be exploited by an attacker to allow brute force attacks against user passwords.

To exploit this vulnerability, the attackers needs to have network connectivity to a domain controller and a username.

CVE Reference


  • CVE-2014-0317

Solution


Install the latest security patch for applicable systems, available for download from (https://technet.microsoft.com/en-us/security/bulletin/ms14-016)

Source


Microsoft Security Bulletin MS14-016

SCAN & CLEAN?: YES FREE?: ABSOLUTELY

Scan and clean your PC with F-Secure's Online Scanner. The best thing is, its free!

Learn More Try Out Now!