MS12-006: Vulnerability in SSL/TLS Could Allow Information Disclosure (2643584)
Medium Nessus Plugin ID 57474
SynopsisIt may be possibe to obtain sensitive information from the remote Windows host using the Secure Channel security package.
TLS 1.1, TLS 1.2, and all cipher suites that do not use CBC mode are not affected.
SolutionMicrosoft has released a set of patches for XP, 2003, Vista, 2008, 7, and 2008 R2.