Microsoft issued a patch to correct a critical vulnerability in the Microsoft Secure Channel, or Schannel, which encrypts traffic and transactions on most Windows platforms. The vulnerability could allow remote code execution if an attacker sends specially crafted packets to a Windows server. Security experts say the potential attack vector is similar to the Heartbleed vulnerability. IBM says the bug is at least 19 years old and has been remotely exploitable for the past 18 years. The greatest impact of the newly discovered Windows vulnerability will most likely be on Microsoft Exchange mail servers.”]
Source: https://www.cuinfosecurity.com/microsoft-patches-schannel-vulnerability-a-7559