MS14-028: Vulnerabilities in iSCSI could allow denial of service: May 13, 2014

Microsoft has released security bulletin MS14-028. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:Support for Microsoft Update

Security solutions for IT professionals:TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country:International Support

More information

Known issues and additional information about this security update

  • When you install this security update on a computer that is running Windows Server 2008 R2, the update will install the iSCSI Software Target if it is not already installed. This behavior occurs only on Windows Server 2008 R2-based systems. 
The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
  • 2962073 MS14-028: Description of the security update for iSCSI for systems that do not have update 2919355 installed: May 13, 2014
  • 2933826 MS14-028: Description of the security update for iSCSI for systems that have update 2919355 installed: May 13, 2014

File hash information

File nameSHA1 hashSHA256 hash
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE

Article ID: 2962485 - Last Review: 09/08/2014 23:34:00 - Revision: 3.0

Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows Server 2012 R2 Standard, Windows Server 2012 Datacenter, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows Server 2012 Standard, Windows Server 2008 R2 Service Pack 1

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB2962485