MS15-122 Security Update for Kerberos to Address Security Feature Bypass (Bitlocker)

This security update resolves a security feature bypass in . An attacker could bypass Kerberos authentication on a target machine and decrypt drives protected by . The bypass can be exploited only if the target system has enabled without a PIN or key, the computer is domain-joined, and the attacker has physical access to the computer.

This security update is rated Important for all supported editions of Windows. For more information, see the Affected Software section.

The update addresses the bypass by adding an additional authentication check that will run prior to a password change. For more information about the , see theVulnerability Information section.

For more information about this update, see Microsoft Knowledge Base Article 3105256.