HTTP: Microsoft Windows TLS Key Exchange Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Windows TLS Key Exchange. A successful attack can result in a denial-of-service condition.
Extended Description
A denial of service vulnerability exists in the Windows implementation of Transport Layer Security (TLS) when it improperly handles certain key exchanges, aka 'Microsoft Windows Transport Layer Security Denial of Service Vulnerability'.
Affected Products
Microsoft windows_server_2019
References
CVE: CVE-2020-1118
Short Name
APP:MS-WIN-TLS-DOS
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
CVE-2020-1118 Denial Exchange Key Microsoft Service TLS Windows of
Release Date
08/27/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
Port
TCP/3389,443
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.8