Microsoft Windows SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerability
Last Update Date:
9 Jan 2013 15:10
Release Date:
9 Jan 2013
5516
Views
RISK: Medium Risk
TYPE: Operating Systems - Windows OS
A security feature bypass vulnerability exists in the way that the Microsoft Windows SSL/TLS (Secure Socket Layer and Transport Layer Security) handle the SSL version 3 (SSLv3) and TLS protocols. The vulnerability could allow security feature bypass if an attacker injects specially crafted content into an SSL/TLS session.
Impact
- Security Restriction Bypass
System / Technologies affected
- Windows Vista
- Windows Server 2008
- Windows 7
- Windows Server 2008 R2
- Windows 8
- Windows Server 2012
- Windows RT
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Download location for patches:
https://technet.microsoft.com/en-us/security/bulletin/ms13-006
Vulnerability Identifier
Source
Related Link
Share with