• Article for your preferred language does not exist. Below is international version of the article.

Article ID: 123514, created on Nov 13, 2014, last review on Nov 13, 2014

  • Applies to:
  • Helm

Information

Microsoft has revealed vulnerability in Microsoft Secure Channel (Schannel) security package in Windows. It affects all modern versions of Windows, including Windows Server 2003/2008/2012, Vista, 7, 8, 8.1, and Windows RT.

There aren't any known exploits that have actually used this vulnerability yet, however it is highly recommended to install security patch. Please refer to Microsoft TechNet article for details:

MS14-066 - Vulnerability in Schannel Could Allow Remote Code Execution (2992611)

Impact

The vulnerability could allow remote code execution if an attacker sends specially crafted packets to a Windows server. According to Microsoft security bulletin at the time it was issued, there was no information to indicate that this vulnerability had been publicly used to attack customers.

This security update is rated Critical for all supported releases of Microsoft Windows.

Resolution

  1. If Helm servers are Parallels Virtuozzo Containers, please proceed with the instructions from the corresponding article. Otherwise, please proceed with step 2.

  2. To close the vulnerability on physical hosts and virtual machines simply install the security patch from Windows Update.

Search Words

Schannel

MS14-066

152090ff5e9a05ea7e1cf0c248449638 6311ae17c1ee52b36e68aaf4ad066387

Email subscription for changes to this article
Save as PDF