MS KB3109853: Update to Improve TLS Session Resumption Interoperability

Info Nessus Plugin ID 87876


The remote Windows host is missing an update to the TLS implementation in SChannel.


The remote Windows host is missing an update to the Transport Layer Security (TLS) protocol implementation in SChannel. The update improves the interoperability between Schannel-based TLS clients and 3rd-party TLS servers that enable RFC5077-based resumption and that send the NewSessionTicket message in the abbreviated TLS handshake.
This update also addresses an issue in schannel.dll that could cause an RFC5077 session ticket-based resumption to fail, subsequently causing WinInet-based clients to perform a fallback to a lower TLS protocol version than what would have been otherwise negotiated.


Microsoft has released a set of patches for Windows 8, RT, 2012, 8.1, RT 8.1, 2012 R2, and 10.

See Also

Plugin Details

Severity: Info

ID: 87876

File Name: smb_kb3109853.nasl

Version: $Revision: 1.2 $

Type: local

Agent: windows

Family: Windows

Published: 2016/01/12

Modified: 2017/08/30

Dependencies: 13855

Risk Information

Risk Factor: Info

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/Registry/Enumerated, SMB/WindowsVersion

Patch Publication Date: 2016/01/12

Vulnerability Publication Date: 2016/01/12

Reference Information

MSKB: 3109853