Any thoughts on why Microsoft rates it as important and not critical.
-
-
-
It seems consistent with their scale, it means https is broken, not iis remote shell. Still, if you can't make exceptions for things like this, then maybe the scale is broken.
- 4 more replies
New conversation -
-
-
The implications here are TLS certificate verification bypassing thus enabling a MITM? Or am I missing something?
-
Yes, or any other way you want to tamper with code signing, etc. Anything that relies on certificate chains being valid.
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That is some first class timing right after Win7 no longer receiving updates.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
From https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601 … : "A successful exploit could also allow the attacker to conduct man-in-the-middle attacks and decrypt confidential information on user connections to the affected software."
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Lol the MSRC site must be overloaded right now, it's taking forever to load
End of conversation
New conversation
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.