Fortiguard

Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege

Description

This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if Active Directory Group Policy preferences are used to distribute passwords across the domain - a practice that could allow an attacker to retrieve and decrypt the password stored with Group Policy preferences.

Affected Applications

Windows 7
Windows Server 2008 R2
Windows 8
Windows 8.1
Windows Server 2012
Windows Server 2012 R2

CVE References

CVE-2014-1812

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2014-1812

ID	23982
Created	Jul 12, 2018
Description Updated	Feb 16, 2022
Severity
Coverage	FortiClient
OS	Windows
Vendor	Microsoft
Patch	auto
Application	Windows 7 , Windows Server 2008 R2 , Windows 8 , Windows 8.1 , Windows Server 2012 , Windows Server 2012 R2

Network

Files and Endpoint

Application

Additional SOC Services

[[threatName]]

Threat Encyclopedia

Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege

Description

Affected Applications

CVE References

Other References

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer

FortiCWP

FortiWeb

FortiNDR

FortiSandBox

FortiTester

Threat Lookup

PSIRT

Resources

[[threatName]]

Threat Encyclopedia

Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege

Description

Affected Applications

CVE References

Other References