Patch Repository

Windows Server 2008 R2 Enterprise Edition (x64) Patch Details
Patch Name Windows6.1-R2-KB3011780-x64.msu
Patch Description Security Update for Windows Server 2008 R2 x64 Edition (KB3011780)
Bulletin Id MS14-068
Bulletin Title Vulnerability in Kerberos Could Allow Elevation of Privilege (3011780)
Severity Critical
Location Path Windows6.1-R2-KB3011780-x64.msu
Bulletin Summary This security update resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability.
Superceding Bulletin Id MS21-FEB6
Patch Release Date Nov 18, 2014

Affected Product Information

Product Name Service Pack Name
Windows Server 2008 R2 Standard Edition (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Enterprise Edition (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Datacenter Edition (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Web Server Edition (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Foundation Edition (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Enterprise Edition (core installation) (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Standard Edition (core installation) (x64)Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 Small Business Server (x64)Windows Server 2008 R2 SP1 (x64)

Disclaimer: This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.