{"id":1097,"date":"2015-05-16T08:53:38","date_gmt":"2015-05-16T00:53:38","guid":{"rendered":"http:\/\/down.cdhaha.net\/?p=1097"},"modified":"2015-05-17T12:02:44","modified_gmt":"2015-05-17T04:02:44","slug":"ms15-055-vulnerability-in-schannel-could-allow-information-disclosure-3061518","status":"publish","type":"post","link":"http:\/\/down.cdhaha.net\/?p=1097","title":{"rendered":"MS15-055 Vulnerability in Schannel Could Allow Information Disclosure (3061518)"},"content":{"rendered":"<p><img decoding=\"async\" src=\"wp-content\/uploads\/2009\/02\/windowsupdate.gif\" alt=\"CSRSS\" title=\"CSRSS\" class=\"alignleft\" \/>This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure when Secure Channel (Schannel) allows the use of a weak Diffie-Hellman ephemeral (DFE) key length of 512 bits in an encrypted TLS session. Allowing 512-bit DHE keys makes DHE key exchanges weak and vulnerable to various attacks. A server needs to support 512-bit DHE key lengths for an attack to be successful; the minimum allowable DHE key length in default configurations of Windows servers is 1024 bits.<\/p>\n<p>This security update is rated Important for all supported releases of <strong>Microsoft Windows<\/strong>.<br \/>\n<!--more--><\/p>\n<p>The security update addresses the vulnerability by increasing the minimum allowable DHE key length to 1024 bits.<\/p>\n<p>For more information about this update, see Microsoft Knowledge Base Article 3061518.<\/p>\n<p><strong>English Version<\/strong><br \/>\n<a href=\"https:\/\/technet.microsoft.com\/en-us\/library\/security\/ms15-055.aspx\" target=\"_blank\">https:\/\/technet.microsoft.com\/en-us\/library\/security\/ms15-055.aspx<\/a><\/p>\n<p><strong>\u7b80\u4f53\u4e2d\u6587\u7248<\/strong><br \/>\n<a href=\"https:\/\/technet.microsoft.com\/zh-CN\/library\/security\/ms15-055.aspx\" target=\"_blank\">https:\/\/technet.microsoft.com\/zh-CN\/library\/security\/ms15-055.aspx<\/a><\/p>\n<p>&nbsp;<\/p>\n<!-- AddThis Advanced Settings generic via filter on the_content --><!-- AddThis Share Buttons generic via filter on the_content -->","protected":false},"excerpt":{"rendered":"<p>This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure when Secure Channel (Schannel) allows&#8230;<!-- AddThis Advanced Settings generic via filter on get_the_excerpt --><!-- AddThis Share Buttons generic via filter on get_the_excerpt --><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1000],"tags":[210],"_links":{"self":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts\/1097"}],"collection":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1097"}],"version-history":[{"count":0,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts\/1097\/revisions"}],"wp:attachment":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1097"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1097"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1097"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}