MS16-020 - Security Update for Active Directory Federation Services to Address Denial of Service

Bulletin ID: 

MS16-020

Severity: 

Important

Description: 

Severity Rating: Important
Revision Note: V1.0 (February 9, 2016): Bulletin published.
Summary: This security update resolves a vulnerability in Active Directory Federation Services (ADFS). The vulnerability could allow denial of service if an attacker sends certain input data during forms-based authentication to an ADFS Server, causing the server to become nonresponsive.

Security advisory: 

Related content