CVE-2014-6321: Code Injection
First published: Tue Nov 11 2014(Updated: )
Schannel in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via crafted packets, aka "Microsoft Schannel Remote Code Execution Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows 8.0 | ||
| Microsoft Windows 8.1 | ||
| Microsoft Windows RT | ||
| Microsoft Windows RT | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 | |
| Microsoft Windows Vista | =sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://blog.beyondtrust.com/triggering-ms14-066
- http://marc.info/?l=bugtraq&m=142384364031268&w=2
- http://secunia.com/advisories/59800
- http://www.kb.cert.org/vuls/id/505120
- http://www.securityfocus.com/bid/70954
- http://www.securitysift.com/exploiting-ms14-066-cve-2014-6321-aka-winshock/
- http://www.us-cert.gov/ncas/alerts/TA14-318A
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-066
Frequently Asked Questions
What is the severity of CVE-2014-6321?
CVE-2014-6321 has a high severity rating, indicating that it can lead to remote code execution.
How do I fix CVE-2014-6321?
To fix CVE-2014-6321, apply the latest security updates provided by Microsoft for affected Windows versions.
Which versions of Windows are affected by CVE-2014-6321?
CVE-2014-6321 affects several versions including Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2003, and others.
What type of attack does CVE-2014-6321 involve?
CVE-2014-6321 allows remote attackers to execute arbitrary code via crafted packets sent to the Schannel component.
Is there a workaround for CVE-2014-6321?
While updating is the best solution, disabling Schannel support for certain protocols can serve as a temporary workaround until patches are applied.
- agent/references
- agent/type
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microsoft
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows 8.0
- canonical/microsoft windows 8.1
- canonical/microsoft windows rt
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- version/microsoft windows server/r2-sp1
- version/microsoft windows server/r2
- canonical/microsoft windows vista
- version/microsoft windows vista/sp2