Lucene search
MicrosoftKB5004243HistoryJun 02, 2021 - 12:00 a.m.
July 13, 2021 Public preview security update (KB5004243)
2021-06-0200:00:00
Microsoft
support.microsoft.com
13
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.027 Low
EPSS
Percentile
90.6%
July 13, 2021 Public preview security update (KB5004243)
Improvements and fixes
This public preview security update includes quality improvements. Key changes include:
- Removes support for the PerformTicketSignature setting and permanently enables Enforcement mode for CVE-2020-17049. For more information and steps to enable full protection on domain controller servers, see Managing deployment of Kerberos S4U changes for CVE-2020-17049.
- Security updates to Windows Apps, Windows Management, Windows Fundamentals, Windows Authentication, Windows User Account Control (UAC), Operating System Security, Windows Graphics, and Windows Storage and Filesystems.
For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.To return to the Azure Stack HCI documentation site
Known issues in this update
Microsoft is not currently aware of any issues with this update.
How to get this update
| The July 13, 2021 security update public preview (KB5004243) for Azure Stack HCI, version 21H2 is delivered from the release channels below. To install it on your Azure Stack HCI cluster, see Update Azure Stack HCI clusters.Install this update****Release Channel | Available | Next Step |
|---|---|---|
| Windows Update and Microsoft Update | Yes | None. This update will be downloaded and installed automatically from Windows Update. |
| Windows Update for Business | Yes | None. This update will be downloaded and installed automatically from Windows Update in accordance with configured policies. |
| Microsoft Update Catalog | Yes | To get the standalone package for this update, go to the Microsoft Update Catalog website. |
| Windows Server Update Services (WSUS) | Yes | This update will automatically sync with WSUS if you configure Products and Classifications as follows:Product: Azure Stack HCIClassification: Security Updates |
| File InformationFor a list of the files that are provided in this update, download the file information for cumulative update 5004243. |
Related
osv
osv
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
CVE-2020-17049
2020-11-11 07:15:16
Moderate: idm:DL1 security update
2024-01-10 00:00:00
prion
prion
Security feature bypass
2020-11-11 07:15:00
cvelist
cvelist
CVE-2020-17049 Kerberos KDC Security Feature Bypass Vulnerability
2020-11-11 00:00:00
redhat
redhat
(RHSA-2023:2570) Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 05:14:28
(RHSA-2024:0143) Moderate: idm:DL1 security update
2024-01-10 12:30:55
(RHSA-2024:0252) Moderate: krb5 security update
2024-01-15 15:25:49
cbl_mariner
cbl_mariner
CVE-2020-17049 affecting package samba 4.12.5-6
2024-06-29 09:08:33
mscve
mscve
Kerberos KDC Security Feature Bypass Vulnerability
2020-11-10 08:00:00
msrc
msrc
Kerberos KDC の脆弱性 (CVE-2020-17049) に対応するためのガイダンス
2020-11-19 08:00:00
nessus
nessus
AlmaLinux 9 : krb5 (ALSA-2023:2570)
2023-05-14 00:00:00
Oracle Linux 9 : krb5 (ELSA-2023-2570)
2023-05-15 00:00:00
RHEL 9 : krb5 (RHSA-2023:2570)
2023-05-11 00:00:00
mskb
mskb
June 8, 2021 Public preview security update (KB5003645)
2021-05-05 00:00:00
December 8, 2020—KB4592449 (OS Builds 18362.1256 and 18363.1256) - EXPIRED
2020-12-08 08:00:00
March 9, 2021—KB5000856 (Security-only update)
2021-03-09 08:00:00
openvas
openvas
Samba Security Feature Bypass Vulnerability (CVE-2020-17049)
2021-10-28 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4592468)
2020-12-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4592484)
2020-12-09 00:00:00
attackerkb
attackerkb
CVE-2020-17049
2020-11-11 00:00:00
almalinux
almalinux
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
Moderate: idm:DL1 security update
2024-01-10 00:00:00
nvd
nvd
CVE-2020-17049
2020-11-11 07:15:16
cve
cve
CVE-2020-17049
2020-11-11 07:15:16
redhatcve
redhatcve
CVE-2020-17049
2021-11-22 20:20:39
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.14.9-alt1
2021-11-01 00:00:00
oraclelinux
oraclelinux
krb5 security, bug fix, and enhancement update
2023-05-15 00:00:00
idm:DL1 security update
2024-01-12 00:00:00
rocky
rocky
idm:DL1 security update
2024-01-12 19:57:42
amazon
amazon
Important: samba
2022-12-01 17:33:00
suse
suse
Security update for samba and ldb (important)
2021-11-10 00:00:00
kaspersky
kaspersky
KLA12003 Multiple vulnerabilities in Microsoft Products (ESU)
2020-11-10 00:00:00
KLA12004 Multiple vulnerabilities in Microsoft Windows
2020-11-10 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
avleonov
avleonov
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.027 Low
EPSS
Percentile
90.6%
Related for KB5004243