Information Disclosure in Microsoft XML Core Services by Remote Attackers
CVE-2015-2471
Currently unrated
What is CVE-2015-2471?
Microsoft XML Core Services versions 3.0, 5.0, and 6.0 have a vulnerability that supports SSL 2.0, creating a pathway for remote attackers to compromise cryptographic protections. By leveraging network sniffing techniques, these attackers can execute decryption attacks to gain unauthorized access to sensitive information.