Rewterz Threat Advisory – CVE-2020-16884 – Microsoft Internet Explorer Browser Helper Object (BHO) Memory Corruption Vulnerability
September 9, 2020Rewterz Threat Advisory – CVE-2020-0664 – Active Directory Information Disclosure Vulnerability
September 9, 2020Rewterz Threat Advisory – CVE-2020-16884 – Microsoft Internet Explorer Browser Helper Object (BHO) Memory Corruption Vulnerability
September 9, 2020Rewterz Threat Advisory – CVE-2020-0664 – Active Directory Information Disclosure Vulnerability
September 9, 2020Severity
Medium
Analysis Summary
CVE-2020-1596 – A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users’s encrypted transmission channel. To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack.
Impact
Information Disclosure
Affected Vendors
Microsoft
Remediation
Refer to Microsoft advisory for the complete list of affected products and their respective patches.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1596