MS09-031: ISA Server 2006 FBA and RADIUS OTP Bulletin

Heute wurde ein Sicherheitsbulletin für ISA Server 2006 veröffentlicht. In Verbindung von forms-based authentication (FBA), Radius OneTimepasswort (OTP) und Kerberos Constrained Delegation (KCD) besteht eine Verwundbarkeit.

If you do not use RADIUS OTP with KCD, or you have disabled HTTP-Basic fallback for RADIUS OTP, you are not subject to this vulnerability.

Weitere Informationen:

Viele Grüße
Dieter


Dieter Rauscher
MVP Forefront

This entry was posted on July 14, 2009 at 13:42 and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.