VYPR
Medium severity5.3NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026

CVE-2017-0043

CVE-2017-0043

Description

Active Directory Federation Services in Microsoft Windows 10 1607, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 Gold and R2, and Windows Server 2016 allows local users to obtain sensitive information via a crafted application, aka "Microsoft Active Directory Federation Services Information Disclosure Vulnerability."

Affected products

10
  • cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
  • Microsoft Corporation/Active Directory Federation Servicesv5
    Range: Active Directory Federation Services in Microsoft Windows 10 1607, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 Gold and R2, and Windows Server 2016

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.