NNSquad - Network Neutrality Squad
[ NNSquad ] Major new Windows TLS bug
Major new Windows TLS bug
(Ars): http://arstechnica.com/security/2014/11/potentially-catastrophic-bug-bites-all-versions-of-windows-patch-now/
Microsoft has disclosed a potentially catastrophic vulnerability in
virtually all versions of Windows. People operating Windows systems,
particularly those who run websites, should immediately install a
patch Microsoft released Tuesday morning. The vulnerability resides
in the Microsoft secure channel (schannel) security component that
implements the secure sockets layer and transport layer security (TLS)
protocols, according to a Microsoft advisory. A failure to properly
filter specially formed packets makes it possible for attackers to
execute attack code of their choosing by sending malicious traffic to
a Windows-based server.
- - -
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Founder:
- Network Neutrality Squad: http://www.nnsquad.org
- PRIVACY Forum: http://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility: http://www.pfir.org/pfir-info
Member: ACM Committee on Computers and Public Policy
I am a consultant to Google -- I speak only for myself, not for them.
Lauren's Blog: http://lauren.vortex.com
Google+: http://google.com/+LaurenWeinstein
Twitter: http://twitter.com/laurenweinstein
Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________
nnsquad mailing list
http://lists.nnsquad.org/mailman/listinfo/nnsquad