| Patch Name : |
WindowsServer2003-KB2585542-x86-ENU.exe |
| Patch Description : |
Security Update for Windows Server 2003 (KB2585542) |
| Bulletin Id : |
MS12-006 |
| Bulletin Title : |
Vulnerability in SSL/TLS Could Allow Information Disclosure (2643584) |
| KnowledgeBase : | 2585542 |
| Severity : |
Important |
| Location Path : | WindowsServer2003-KB2585542-x86-ENU.exe |
| Bulletin Summary: |
This security update resolves a publicly disclosed vulnerability in SSL 3.0 and TLS 1.0. This vulnerability affects the protocol itself and is not specific to the Windows operating system. The vulnerability could allow information disclosure if an attacker intercepts encrypted web traffic served from an affected system. TLS 1.1, TLS 1.2, and all cipher suites that do not use CBC mode are not affected. |
| Superceding Bulletin Id : |
MS12-049 |
| Patch Release Date : |
Jan 10, 2012 |
| CVE Id : | CVE-2011-3389 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| Windows Server 2003 for Small Business Server | Windows Server 2003 Service Pack 2 |
| Windows Server 2003, Datacenter Edition | Windows Server 2003 Service Pack 2 |
| Windows Server 2003, Enterprise Edition | Windows Server 2003 Service Pack 2 |
| Windows Server 2003, Standard Edition | Windows Server 2003 Service Pack 2 |
| Windows Server 2003, Web Edition | Windows Server 2003 Service Pack 2 |
|
| File changes |
|
| File Path |
Version |
| %windir%\system32\Schannel.dll | 5.2.3790.4935 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP3\KB2585542 | | -2 |
|
