MS15-014 - Vulnerability in Group Policy Could Allow Security Feature Bypass

Bulletin ID: 

MS15-014

Severity: 

Important

Description: 

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker, by way of a man-in-the-middle attack, causes the Group Policy Security Configuration Engine policy file on a targeted system to become corrupted or otherwise unreadable. This results in the Group Policy settings on the system to revert to their default, and potentially less secure, state.

Security advisory: 

Related content