Channel: Claims based access platform (CBA), code-named Geneva forum

X Mark channel Not-Safe-For-Work? cancel confirm NSFW Votes: (0 votes)

X Are you the publisher? Claim or contact us about this channel.

X 0

Showing article 571 of 2535 in channel 6951874
Channel Details:

Title: Claims based access platform (CBA), code-named Geneva forum
Channel Number: 6951874
Language: English
Registered On: December 23, 2012, 4:24 pm
Number of Articles: 2535
Latest Snapshot: June 10, 2016, 6:31 am
RSS URL: http://social.msdn.microsoft.com/forums/en-us/geneva/threads?outputas=rss
Description: This forum is for discussion of "Geneva" Server, "Geneva" Framework and Windows CardSpace "Geneva."
Catalog: //named103.rssing.com/catalog.php?indx=6951874

↧

Vulnerability in Active Directory Federation Services Could Allow Information Disclosure

August 13, 2013, 11:56 am

≫ Next: Auto-Logout / AD FS / IIS7 / Claims Based Authentication - Cookies not expiring

≪ Previous: Which certificate to provide to relying partner?

Not sure if anyone else has seen this or not:

https://technet.microsoft.com/en-us/security/bulletin/ms13-066

"This security update resolves a privately reported vulnerability in Active Directory Federation Services (AD FS). The vulnerability could reveal information pertaining to the service account used by AD FS. An attacker could then attempt logons from outside the corporate network, which would result in account lockout of the service account used by AD FS if an account lockout policy has been configured. This would result in denial of service for all applications relying on the AD FS instance."

↧