Microsoft Is Working To Address This Potentially Significant Security Problem

Microsoft has fastened a bug plaguing several variations of Home windows and Home windows Server that is triggering SSL/TLS handshake failures.

Those experiencing the flaw see a SEC_E_ILLEGAL_MESSAGE notification pop up in functions that strive to hook up with servers.

“We handle a problem which may affect some kinds of Safe Sockets Layer (SSL) and Transport Layer Safety (TLS) connections. These connections may need handshake failures,” Microsoft mentioned in an announcement.

Several variations affected

The affected variations embrace Home windows 11 22H2; Home windows 11 21H2; Home windows 10 21H2; Home windows 10 21H1; Home windows 10 20H2; Home windows 10 Enterprise LTSC 2019; Home windows 10 Enterprise LTSC 2016; Home windows 10 Enterprise 2015 LTSB; Home windows 8.1; and Home windows 7 SP1.

For servers, affected variations embrace Home windows Server 2022; Home windows Server 2019; Home windows Server 2016; Home windows Server 2012 R2; Home windows Server 2012; and Home windows Server 2008 R2 SP1.

That is an out-of-band replacement, which means it gained be robotically deployed through Home windows Replace, Home windows Replace for Enterprise, or Home windows Server Replace Providers (WSUS).

As a substitute, customers taken with selecting the replace-up want to move over to the Microsoft Replace Catalog and manually add them both into the Microsoft Endpoint Configuration Supervisor, or Home windows Server Replace Providers (WSUS).

Microsoft isn’t any stranger to out-of-band updates. The final time we had such a replacement was in Might 2022 when the corporate fastened an issue that prevented functions downloaded from the Home windows Retailer from correctly operating on endpoints.

Nevertheless, BleepingComputer found that after putting in the patch, the Cluster Service would possibly fail to begin. In this case, this occurs as a result of a replacement to the PnP class drivers utilized by the service eliminated a Cluster Community Driver.

The repair remains to be within the works for Home windows 10 2016 LTSB, Home windows Server 2016, and Home windows 10 2015 LTSB.

Microsoft is working to address this potentially significant security problem