Microsoft Windows Transport Layer Security Denial of Service Vulnerability - CVE-2020-1118ID: oval:org.secpod.oval:def:63147 | Date: (C)2020-05-13 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
A denial of service vulnerability exists in the Windows implementation of Transport Layer Security (TLS) when it improperly handles certain key exchanges. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, a remote unauthenticated attacker could send a specially crafted request to a target system utilizing TLS 1.2 or lower, triggering the system to automatically reboot.The update addresses the vulnerability by changing the way TLS key exchange messages are validated.
Platform: |
Microsoft Windows Server |
Microsoft Windows Server 2019 |
Microsoft Windows 10 |