MS14-066: Vulnerability in SChannel could allow remote code execution
To the Hebrew version – soon
On November 11 a new vulnerability in the Microsoft secure channel (schannel) security component that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) standard authentication protocols has been discovered.
“Schannel is part of the security package that helps provide an authentication service to provide secure communications between client and server. For more information, see Secure Channel.”
SChannel is used by anything leveraging built-in SSL and TLS this includes IIS, Active Directory, OWA, Exchange, Internet Explorer, and Windows Update.
SChannel is a Security Support Provider (SSP) that implements SSL and TLS authentication protocols. This package is used to allow for secure communications among many common applications including Active Directory, IIS, OWA, Exchange, Internet Explorer, Windows Update, and any other application using integrated SSL/TLS.
Reportedly, specially crafted packets being processed by SChannel could cause the operating system to execute unintended code.
Details surrounding the vulnerability are vague, but Microsoft has indicated that there are no known exploits in the wild and the development of exploit code will be challenging. This vulnerability is reported to affect all Windows servers and clients, and while it’s unlikely to be exploited today, it should be patched as soon as possible given the possibility of remote code execution.
Who is affected by SChannel vulnerability?
| Operating System | Maximum Security Impact | Aggregate Severity Rating | Updates Replaced |
| Windows Server 2003 | |||
| Windows Server 2003 Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2655992 in MS12-049 |
| Windows Server 2003 x64 Edition Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2655992 in MS12-049 |
| Windows Server 2003 with SP2 for Itanium-based Systems (2992611) |
Remote Code Execution | Critical | 2655992 in MS12-049 |
| Windows Vista | |||
| Windows Vista Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Vista x64 Edition Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Server 2008 | |||
| Windows Server 2008 for 32-bit Systems Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Server 2008 for x64-based Systems Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Server 2008 for Itanium-based Systems Service Pack 2 (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows 7 | |||
| Windows 7 for 32-bit Systems Service Pack 1 (2992611) |
Remote Code Execution | Critical | 2982378 inSA2871997 |
| Windows 7 for x64-based Systems Service Pack 1 (2992611) |
Remote Code Execution | Critical | 2982378 inSA2871997 |
| Windows Server 2008 R2 | |||
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (2992611) |
Remote Code Execution | Critical | 2982378 inSA2871997 |
| Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 (2992611) |
Remote Code Execution | Critical | 2982378 inSA2871997 |
| Windows 8 and Windows 8.1 | |||
| Windows 8 for 32-bit Systems (2992611) |
Remote Code Execution | Critical | 2868725 inSA2868725 |
| Windows 8 for x64-based Systems (2992611) |
Remote Code Execution | Critical | 2868725 inSA2868725 |
| Windows 8.1 for 32-bit Systems (2992611) |
Remote Code Execution | Critical | None |
| Windows 8.1 for x64-based Systems (2992611) |
Remote Code Execution | Critical | None |
| Windows Server 2012 and Windows Server 2012 R2 | |||
| Windows Server 2012 (2992611) |
Remote Code Execution | Critical | 2868725 inSA2868725 |
| Windows Server 2012 R2 (2992611) |
Remote Code Execution | Critical | None |
| Windows RT and Windows RT 8.1 | |||
| Windows RT[1] (2992611) |
Remote Code Execution | Critical | 2868725 inSA2868725 |
| Windows RT 8.1[1] (2992611) |
Remote Code Execution | Critical | None |
| Server Core installation option | |||
| Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) (2992611) |
Remote Code Execution | Critical | 2207566 in MS10-085 |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) (2992611) |
Remote Code Execution | Critical | 2982378 inSA2871997 |
| Windows Server 2012 (Server Core installation) (2992611) |
Remote Code Execution | Critical | 2868725 inSA2868725 |
| Windows Server 2012 R2 (Server Core installation) (2992611) |
Remote Code Execution | Critical | None |
- Taken from Microsoft.com
How to handle this?
Just go to windows update on your OS and get the latest's updates