MS14-028: Vulnerabilities in iSCSI could allow denial of service: May 13, 2014

<html><body><p>Resolves vulnerabilities in Windows that could allow denial of service if an attacker sends large amounts of specially crafted iSCSI packets over the target network. This vulnerability affects only those servers for which the iSCSI target role is enabled.</p><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS14-028. To learn more about this security bulletin: <br /><ul><li>Home users:<br /><div><a href=“https://www.microsoft.com/security/pc-security/updates.aspx” target=“_self”>https://www.microsoft.com/security/pc-security/updates.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br /><div><a href=“https://update.microsoft.com/microsoftupdate/” target=“_self”>https://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“https://technet.microsoft.com/security/bulletin/ms14-028” target=“_self”>https://technet.microsoft.com/security/bulletin/MS14-028</a></div></li></ul><h3>How to obtain help and support for this security update</h3>Help installing updates:<br /><a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals:<br /><a href=“https://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your Windows-based computer from viruses and malware: <a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country:<br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a><br /><br /></div><h2>More Information</h2><div><h3>Known issues and additional information about this security update</h3><ul><li>When you install this security update on a computer that is running Windows Server 2008 R2, the update will install the iSCSI Software Target if it is not already installed. This behavior occurs only on Windows Server 2008 R2-based systems. </li></ul> <br /><br /><br /><br /><br />The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link. <ul><li><div><a href=“https://support.microsoft.com/en-us/help/2962073”>2962073 </a> MS14-028: Description of the security update for iSCSI for systems that do not have update 2919355 installed: May 13, 2014</div></li><li><div><a href=“https://support.microsoft.com/en-us/help/2933826”>2933826 </a> MS14-028: Description of the security update for iSCSI for systems that have update 2919355 installed: May 13, 2014</div></li></ul></div><h2>FILE INFORMATION</h2><div><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>Windows6.1-KB2933826-X64.exe</td><td>8CD066A419B6C8B7F3E8C0D77DCBC824664DFBA9</td><td>BDC90E259E9028DD5006A8EB8EAAB5573F4C730EA83462FFB05F02D271C0DB0D</td></tr><tr><td>Windows8-RT-KB2933826-x64.msu</td><td>60B32546D3BC52EE351F240D7385BB3739507E6C</td><td>7DC1CDD0187E8E8052F6100EC62A9AD2246860362D1828F41B1F7583B6FDFA6E</td></tr><tr><td>Windows8.1-KB2933826-x64.msu</td><td>855090E0EE448D2253AEEA7E9B2E266D1413CC62</td><td>D63CD960538A597512720A8CB9C281C5D7208B17125841BDF7C2E0B636303AAC</td></tr><tr><td>Windows8.1-KB2962073-x64.msu</td><td>0F03B21A589742E02E33886397992CBB52309165</td><td>68BEECE23561C8A1BB4313B8AB52117CA39143A05957082FCDA57CC83BB09DC8</td></tr></table></div></div><br /></span></div></div></div></div></body></html>