MS15-014: Vulnerability in Group Policy Could Allow Security Feature Bypass (3004361)
Low Nessus Plugin ID 81267
SynopsisThe remote Windows host is affected by a security downgrade vulnerability.
DescriptionThe version of Windows running on the remote host is affected by a security downgrade vulnerability that affects workstations and servers configured to use Group Policy. A man-in-the-middle attacker, via modified domain controller responses sent to targeted systems, can cause the policy file to become corrupted and unreadable, resulting in the Group Policy settings reverting to their default, potentially less secure, state.
SolutionMicrosoft has released a set of patches for Windows 2003, Vista, 2008, 7, 2008 R2, 8, 2012, 8.1, and 2012 R2.