Windows Out-of-Band Update Released to Fix Kerberos
Microsoft has released an emergency security update to fix a Kerberos OOB vulnerability in Windows.
Microsoft Issues Emergency Update for Kerberos
Microsoft has released an emergency security update to fix a Kerberos OOB vulnerability in Windows Server running Domain Controller services. Anyone impacted by this vulnerability will not be able to sign into services or applications using the affected DC, whether this was Premise or Cloud. This also impacts anyone using SSO.
Rob Brown, Head of Customer Success for Syxsense said, “This vulnerability is impacting all Windows Server OS from 2008 through to 2019 and should be a particular concern as this was identified by a very well-known Antivirus partner. Therefore, the assumption is to believe this was being used in malware, other ransomware attacks, or full loss of service if exploited.”
Windows Out-of-Band Updates
- Windows Server 2008 SP2: KB5008606
- Windows Server 2008 R2 SP1: KB5008605
- Windows Server 2012: KB5008604
- Windows Server 2012 R2: KB5008603
- Windows 10 all editions and Windows Server 2016: KB5008601
- Windows 10 Enterprise and Windows Server 2019: KB5008602
As always we recommend full testing be performed prior to live deployment to your device, these are now available within Syxsense.