|
|
|||
| Rule General Information |
|---|
| Release Date: | 2020-06-02 | |
| Rule Name: | Microsoft Windows TLS Key Exchange Denial of Service Vulnerability -2 (CVE-2020-1118) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | A denial of service vulnerability exists in the Windows implementation of Transport Layer Security (TLS) when it improperly handles certain key exchanges, aka 'Microsoft Windows Transport Layer Security Denial of Service Vulnerability'. | |
| Impact: | An attacker can launch a denial of service attack by exploiting the vulnerability successfully. | |
| Affected OS: | Windows | |
| Reference: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1118 https://nvd.nist.gov/vuln/detail/CVE-2020-1118 https://vigilance.fr/vulnerability/Microsoft-Windows-vulnerabilities-of-May-2020-32250 |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2020-1118 |