Home / bulletins MS14-066 - Critical: Vulnerability in Schannel Could Allow Remote Code Execution (2992611) - Version: 2.0
Posted on 19 November 2014
There is an newer version: MS14-066 - Version: 3.0
CriticalSeverity Rating: Critical
Revision Note: V2.0 (November 18, 2014): Bulletin revised to announce the reoffering of the 2992611 update to systems running Windows Server 2008 R2 and Windows Server 2012. The reoffering addresses known issues that a small number of customers experienced with the new TLS cipher suites that were included in the original release. Customers running Windows Server 2008 R2 or Windows Server 2012 who installed the 2992611 update prior to the November 18 reoffering should reapply the update.
Summary: This security update resolves a privately reported vulnerability in the Microsoft Secure Channel (Schannel) security package in Windows. The vulnerability could allow remote code execution if an attacker sends specially crafted packets to a Windows server.Other versions
- MS14-066 - Version: 1.0
- MS14-066 - Version: 2.0
- MS14-066 - Version: 3.0
