today in the morning i installed 5-6 security updates including (KB980436) on our production server. During the day we got errors when our application calls a secured web service :
An error occurred while making the HTTP request to https://[MyService]. This could be due to the fact that the server certificate is not configured properly with HTTP.SYS in the HTTPS case. This could also be caused by a mismatch of the security binding
between the client and the server.
I had nothing to do because we haven't made any change at our application. Then i remembered the security updates and walked through the update informations. I saw that KB is about :
MS10-049: Vulnerabilities in SChannel could allow remote code execution
I removed this update because its about secure channel, then everything worked fine.
So what should we do ? Who should be informed ?
View Complete Post