Taiwan National CERT
TWNCERT
::: Skip Navigation Links
> HomePage > Microsoft Security列表 > Microsoft Security

Microsoft Security

MS17-019 - Important- Security Update for Active Directory Federation Services

This security update resolves a vulnerability in Active Directory Federation Services (ADFS). The vulnerability could allow information disclosure if an attacker sends a specially crafted request to an ADFS server, allowing the attacker to read sensitive information about the target system.

This security update is rated Important for all supported releases of Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016. For more information, see the Affected Software and Vulnerability Severity Ratings section.

The update addresses the vulnerability by adding additional verification checks in ADFS. For more information about the vulnerability, see the Vulnerability Information section.

For more information about this update, see Microsoft Knowledge Base Article 4010320

Reference

https://technet.microsoft.com/en-us/library/security/ms17-019.aspx

Publish Date
3/29/2017 12:00:00 AM