CVE-2012-1870

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2, R2, and R2 SP1 Microsoft Windows 7 Gold and SP1

Description The issue allows remote web servers to obtain plaintext data by triggering multiple requests to a third-party HTTPS server and sniffing the network during the resulting HTTPS session. This is an information disclosure issue that affects the TLS encryption protocol itself, allowing the decryption of encrypted TLS traffic. It primarily impacts HTTPS traffic, as the browser is the primary attack vector, and all web traffic served via HTTPS or mixed content HTTP/HTTPS is affected.

Recommendations For Microsoft Windows XP SP2 and SP3, consider disabling TLS protocol until a patch is available. For Microsoft Windows Server 2003 SP2, restrict access to HTTPS traffic to minimize the risk of exploitation. For Microsoft Windows Vista SP2, avoid using mixed content HTTP/HTTPS in web traffic until the issue is resolved. For Microsoft Windows Server 2008 SP2, R2, and R2 SP1, consider implementing additional security measures to protect HTTPS traffic. For Microsoft Windows 7 Gold and SP1, restrict access to the TLS encryption protocol to minimize the risk of exploitation.