Patch Critical Cryptographic Vulnerability in Microsoft Windows Clients and Servers

¯\_(ツ)_/¯

¯\_(ツ)_/¯

Honorary Master
Joined
Apr 20, 2005
Messages
24,543
Reaction score
27,480
Patch Critical Cryptographic Vulnerability in Microsoft Windows Clients and Servers


Summary
NSA has discovered a critical vulnerability (CVE-2020-0601) affecting Microsoft Windows®1 cryptographic functionality. The certificate validation vulnerability allows an attacker to undermine how Windows verifies cryptographic trust and can enable remote code execution. The vulnerability affects Windows 10 and Windows Server 2016/2019 as well as applications that rely on Windows for trust functionality. Exploitation of the vulnerability allows attackers to defeat trusted network connections and deliver executable code while appearing as legitimately trusted entities. Examples where validation of trust may be impacted include:
- HTTPS connections
- Signed files and emails
- Signed executable code launched as user-mode processes
....

https://twitter.com/x/status/1217152211056238593
 
The NSA, who's main interest is having a backdoor to literally every PC in the world, is urging people to apply a "security" patch ... :unsure:
 
NarrowBandFtw said:
The NSA, who's main interest is having a backdoor to literally every PC in the world, is urging people to apply a "security" patch ... :unsure:
Click to expand...
So do we ignore it? Listen to our local government's security advisories ... or China's, or Russia's ... oh wait ... :p
 
NarrowBandFtw said:
You get rid of Windows and install Linux ;)
Click to expand...
If it was about me, myself and I ... ;)
Which do you prefer? SUSE, RH or Debian? Or rather Arch?
I personally love Linux virtualization in containers and run many flavours ... such an efficient solution.

But that does not help your average Joe.
 
Sollie said:
If it was about me, myself and I ... ;)
Which do you prefer? SUSE, RH or Debian? Or rather Arch?
I personally love Linux virtualization in containers and run many flavours ... such an efficient solution.

But that does not help your average Joe.
Click to expand...
I'm not even that proficient in Linux (any distro), but when I get into it, it's usually Ubuntu / Debian / RedHat, in that order

I do know if I was super paranoid / careful about my security it would not be Windows at all though
 
NarrowBandFtw said:
I'm not even that proficient in Linux (any distro), but when I get into it, it's usually Ubuntu / Debian / RedHat, in that order

I do know if I was super paranoid / careful about my security it would not be Windows at all though
Click to expand...
I'll give you a break, simply because you made a wise choice ... ;)
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X