ms15-027: vulnerability in netlogon could allow spoofing: march 10, 2015 for Windows Server 2008 R2 x64 Edition (KB3002657)
Risk Information
Base Score
8.2
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
EPSS Score
Exploitation Probability
2.538%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
17260
Patch Description
Security Update for Windows Server 2008 R2 x64 Edition (KB3002657)
References
http://packetstormsecurity.com/files/130773/Windows-Pass-Through-Authentication-Methods-Improper-Validation.html
http://seclists.org/fulldisclosure/2015/Mar/60
http://technet.microsoft.com/security/bulletin/MS15-027
http://www.coresecurity.com/advisories/windows-pass-through-authentication-methods-improper-validation
http://www.securitytracker.com/id/1031891
https://www.samba.org/samba/history/samba-4.2.10.html