SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Microsoft)  >   Windows DLL (Any) Vendors:   Microsoft
Windows Kerberos Authentication Bypass Flaw Lets Physically Local Users Access BitLocker Data on the Target System
SecurityTracker Alert ID:  1034125
SecurityTracker URL:  http://securitytracker.com/id/1034125
CVE Reference:   CVE-2015-6095   (Links to External Site)
Date:  Nov 10 2015
Impact:   Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): Vista SP2, 2008 SP2, 7 SP1, 2008 R2 SP1, 8, 8.1, 2012, 2012 R2, RT, RT 8.1, 10; and prior service packs
Description:   A vulnerability was reported in Windows BitLocker. A physically local user can decrypt and access data on the target system in certain cases.

A physically local user can bypass Kerberos authentication to decrypt BitLocker drives in certain cases. Systems with BitLocker enabled without a PIN or USB key are affected if the target system is domain-joined.

Ian Haken of Synopsys Inc. reported this vulnerability.

Impact:   A physically local user can decrypt obtain data stored on BitLocker drives on the target system.
Solution:   The vendor has issued a fix.

Windows Vista Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=8c7474b7-be05-4afc-a605-649983e993d5

Windows Vista x64 Edition Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=7192595c-fe35-43c0-baaa-4c83b66b5302

Windows Server 2008 for 32-bit Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=a4ac6c1f-40cd-47fe-b7f7-bafa48ce4252

Windows Server 2008 for x64-based Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=9fc6e004-4060-47ef-9daf-e9bade8ab01e

Windows Server 2008 for Itanium-based Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=67164e59-9c64-4be0-9b5a-3e84045e4222

Windows 7 for 32-bit Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=bdf79285-abbd-448c-a5ff-8a4780f53622

Windows 7 for x64-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=606c44ad-ee56-4a7a-a27b-9d5da1f865f9

Windows Server 2008 R2 for x64-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=06fd07d6-34bf-47f8-b023-c6b18eab876e

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=9a5b15fb-25a1-41aa-b961-81f6c3e83edf

Windows 8 for 32-bit Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=31277c69-85be-447f-9fae-7ca202e0e039

Windows 8 for x64-based Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=76f8b575-0e0d-4e6a-9f57-efaa9f87fbe7

Windows 8.1 for 32-bit Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=fd9dadd1-fc6f-411a-bb51-54afe8a69d77

Windows 8.1 for x64-based Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=f56662be-cd00-4d21-9470-4e7ca818fbc4

Windows Server 2012:

https://www.microsoft.com/downloads/details.aspx?familyid=e853f670-1140-4f4b-a6b8-1fd573d5c438

Windows Server 2012 R2:

https://www.microsoft.com/downloads/details.aspx?familyid=ff2c96d3-6795-4201-8ebc-508756c5fad4

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation):

https://www.microsoft.com/downloads/details.aspx?familyid=a4ac6c1f-40cd-47fe-b7f7-bafa48ce4252

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation):

https://www.microsoft.com/downloads/details.aspx?familyid=9fc6e004-4060-47ef-9daf-e9bade8ab01e

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation):

https://www.microsoft.com/downloads/details.aspx?familyid=06fd07d6-34bf-47f8-b023-c6b18eab876e

Windows Server 2012 (Server Core installation):

https://www.microsoft.com/downloads/details.aspx?familyid=e853f670-1140-4f4b-a6b8-1fd573d5c438

Windows Server 2012 R2 (Server Core installation):

https://www.microsoft.com/downloads/details.aspx?familyid=ff2c96d3-6795-4201-8ebc-508756c5fad4

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms15-122

Vendor URL:  technet.microsoft.com/library/security/ms15-122 (Links to External Site)
Cause:   Authentication error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC