Microsoft and Apple issue fixes for “Freak” flaw that affects Windows, Apple’s Mac OS X and iOS operating systems. The flaw could be abused by attackers to subvert secure Web connections by forcing crypto suites to downgrade from using a “strong” RSA cipher to a weaker, “export-grade” cipher. Microsoft also released a fix that addresses a failed patch for a vulnerability that was exploited by the Stuxnet malware. Researchers warn that 26 percent of all HTTPS servers remain at risk from the Freak flaw.”]
Source: https://www.cuinfosecurity.com/apple-microsoft-issue-freak-flaw-fixes-a-8003