NNSquad - Network Neutrality Squad

NNSquad Home Page

NNSquad Mailing List Information


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ NNSquad ] Major new Windows TLS bug

Major new Windows TLS bug

(Ars): http://arstechnica.com/security/2014/11/potentially-catastrophic-bug-bites-all-versions-of-windows-patch-now/

    Microsoft has disclosed a potentially catastrophic vulnerability in
    virtually all versions of Windows. People operating Windows systems,
    particularly those who run websites, should immediately install a
    patch Microsoft released Tuesday morning.  The vulnerability resides
    in the Microsoft secure channel (schannel) security component that
    implements the secure sockets layer and transport layer security (TLS)
    protocols, according to a Microsoft advisory. A failure to properly
    filter specially formed packets makes it possible for attackers to
    execute attack code of their choosing by sending malicious traffic to
    a Windows-based server.

 - - - 

Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren 
 - Network Neutrality Squad: http://www.nnsquad.org 
 - PRIVACY Forum: http://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility: http://www.pfir.org/pfir-info
Member: ACM Committee on Computers and Public Policy
I am a consultant to Google -- I speak only for myself, not for them.
Lauren's Blog: http://lauren.vortex.com
Google+: http://google.com/+LaurenWeinstein 
Twitter: http://twitter.com/laurenweinstein
Tel: +1 (818) 225-2800 / Skype: vortex.com
nnsquad mailing list