MS15-017: Vulnerability in Virtual Machine Manager could allow elevation of privilege: February 10, 2015

<html><body><p>Resolves a vulnerability in Virtual Machine Manager that could allow elevation of privilege if an attacker logs on to an affected system.</p><h2>Introduction</h2><div>The update that is described in this article resolves a vulnerability in Microsoft System Center 2012 R2 Virtual Machine Manager that could allow elevation of privilege if an attacker logs on to an affected system.</div><h2>Summary</h2><div>Microsoft has released security bulletin MS15-017. Learn more about how to obtain the fixes that are included in this security bulletin:<br /><ul><li>For individual, small business, and organizational users, use the Windows automatic updating feature to install the fixes from Microsoft Update. To do this, see <a href=“http://www.microsoft.com/security/pc-security/updates.aspx” target=“_self”>Get security updates automatically</a> on the Microsoft Safety and Security Center website.<br /></li><li>For IT professionals, see <a href=“http://technet.microsoft.com/security/bulletin/ms15-017” target=“_self”>Microsoft Security Bulletin MS15-017</a> on the Security TechCenter website.</li></ul></div><h2></h2><div><h3>How to obtain help and support for this security update</h3>Help installing updates: <a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <a href=“http://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your Windows-based computer from viruses and malware: <a href=“https://support.microsoft.com/gp/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country: <a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a></div><h2>More Information</h2><div><div><div><div><span><span></span></span><span><span>Security update deployment information</span></span></div><div><span><div><h4>Microsoft System Center Virtual Machine Manager 2012 R2</h4><span>Reference Table</span><br /><br />The following table contains the security update information for this software.<br /><div><table><tr><td>Security update file names</td><td>For Microsoft System Center Virtual Machine Manager 2012 R2 UR 5 (VMM Server Update):<br /><span>update kb3023195_vmmserver_amd64.msp</span></td></tr><tr><td></td><td>For Microsoft System Center Virtual Machine Manager 2012 R2 UR5 (Admin Console Update update):<br /><span>KB3023914_AdminConsole_amd64.msp</span></td></tr><tr><td>Installation switches</td><td>See installation instructions</td></tr><tr><td>Update Log File</td><td>KB3023195.log<br />KB3023914.log</td></tr><tr><td>Restart requirement</td><td>In some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.</td></tr><tr><td>Removal information</td><td>Rollback to a previous update rollup is not supported.</td></tr><tr><td>File information</td><td>See <a href=“https://support.microsoft.com/help/3023195” target=“_self”>Microsoft Knowledge Base Article 3023195</a></td></tr><tr><td>Registry key verification</td><td>HKLM\Software\Microsoft\Microsoft System Center Virtual Machine Manager Server\Setup\ProductVersion</td></tr></table></div></div><br /></span></div></div></div><h4>Additional information about this update</h4>The following article contains additional information about this update as it relates to individual product versions. The article may contain specific information to the individual updates such as download URLs and installation instructions.<br /><ul><li><a href=“https://support.microsoft.com/en-us/help/3023195”>3023195 </a> Description of the security update for Update Rollup 5 for System Center 2012 R2 Virtual Machine Manager<br /><br />The following is the security issue that is included in Update Rollup 5. For more information about the non-security issues that are included in Update Rollup 5, see security update <a href=“https://support.microsoft.com/en-us/help/3023195”>3023195 </a>.<br /><ul><li>A vulnerability exists in Virtual Machine Manager when it incorrectly validates user roles. The vulnerability could allow elevation of privilege if an attacker logs on an affected system. An attacker must have valid Active Directory logon credentials and be able to log on with that credential to exploit the vulnerability.</li></ul></li></ul></div><h2></h2><div><div><div><div><span><span></span></span><span><span>File hash information</span></span></div><div><span><div><div><table><tr><th>File name</th><th>SHA1 hash</th><th>SHA256 hash</th></tr><tr><td>kb3023195_vmmserver_amd64.msp</td><td>A3C2EB15F3CD614327F0654498290484A766906D</td><td>ADE22D06AFC9C0D4740F6F78835648AC711CD5BD9F6A2A2FD446F7D5CE34093C</td></tr><tr><td>kb3023914_AdminConsole_amd64.msp</td><td>018F65EF001628767C861B4482FBA64C3FCC7E9C</td><td>6DFFE7F148EA0CD72958CA31AD665BA8FAF1ED95D852BCE10C109AA99C24AA5C</td></tr><tr><td>kb3023914_AdminConsole_i386.msp</td><td>2DB0C289D3ED4CAFF0ECF758AEDBD93E051EA3D7</td><td>985BBB64854BCBF80024CBDCF66A35161A7DCA8B94522037AA4AECAD1C307B5F</td></tr></table></div></div><br /></span></div></div></div></div></body></html>