Microsoft released an out-of-band patch on Tuesday, addressing a vulnerability in Kerberos KBC, a component that handles authentication on local networks. The patch was supposed to have been released earlier this month, but Microsoft withheld it due to QA concerns. Redmond says the flaw is being used in attacks online, so organizations are urged to update immediately. Home users and non-domain controller versions of Windows will get a defense in depth update for the flaw, but are not vulnerable.”]