MS15-031 - Important: Vulnerability in Schannel Could Allow Security Feature Bypass (3046049)

	MS15-031 - Important: Vulnerability in Schannel Could

Severity Rating: Important
Revision Note: V1.1 (March 24, 2015): Revised bulletin to add an FAQ directing customers to Microsoft Knowledge Base Article 3050509 for instructions on how to disable EXPORT ciphers after installing the update on Windows Server 2003 systems.
Summary: This security update resolves a vulnerability in Microsoft Windows that facilitates exploitation of the publicly disclosed FREAK technique, an industry-wide issue that is not specific to Windows operating systems. The vulnerability could allow a man-in-the-middle (MiTM) attacker to force the downgrading of the key length of an RSA key to EXPORT-grade length in a TLS connection. Any Windows system using Schannel to connect to a remote TLS server with an exploitable cipher suite is affected.

- View Microsoft Security Bulletin MS15-031
- View Microsoft Knowledge Base Article - on: 1.
- Visit Microsoft Corporation

Posted: March 24, 2015 | By: Wissen Schwamm

Recent Microsoft related news.

MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1

MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0

MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0

MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0

MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0

+ View more Microsoft related news +

			More Technical Information Than You Can Handle.