This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure when Secure Channel (Schannel) allows the use of a weak Diffie-Hellman ephemeral (DFE) key length of 512 bits in an encrypted TLS session. Allowing 512-bit DHE keys makes DHE key exchanges weak and vulnerable to various attacks. A server needs to support 512-bit DHE key lengths for an attack to be successful; the minimum allowable DHE key length in default configurations of Windows servers is 1024 bits.
This security update is rated Important for all supported releases of Microsoft Windows.
The security update addresses the vulnerability by increasing the minimum allowable DHE key length to 1024 bits.
For more information about this update, see Microsoft Knowledge Base Article 3061518.
English Version
https://technet.microsoft.com/en-us/library/security/ms15-055.aspx
简体中文版
https://technet.microsoft.com/zh-CN/library/security/ms15-055.aspx
Responses to “MS15-055 Vulnerability in Schannel Could Allow Information Disclosure (3061518)”
Back Top
Leave a Reply