MS15-096: Vulnerability in Active Directory Service Could Allow Denial of Service (3072595)
Medium Nessus Plugin ID 85846
SynopsisThe remote Windows host is affected by a denial of service vulnerability.
DescriptionThe remote Windows host is affected by a denial of service vulnerability in Active Directory that is triggered during the handling of a saturation of account creations. An authenticated, remote attacker, with privileges to join machines to a domain, can exploit this vulnerability by creating multiple machine accounts, resulting in the Active Directory service becoming non-responsive.
SolutionMicrosoft has released a set of patches for Windows 2008, 2008 R2, 2012, and 2012 R2.