Security Update for ISA Server 2006 Service Pack 1 (KB 971143)

2009-07-14T17:00:00
ID MS:2A30563D-B1E5-45AB-ABFC-410CCD351014
Type msupdate
Reporter Microsoft
Modified 2009-07-14T17:00:00

Description

When publishing a Web server using forms-based authentication with Radius one-time password (OTP ) as the credentials authority and Kerberos constrained delegation, it may be possible to bypass the form authentication and log on using invalid credentials.