How to fix Birthday attacks against TLS ciphers with 64bit (Sweet32) -CVE-2016-2183?

Sujith R 20 Reputation points
2024-01-21T16:18:01.7733333+00:00

Hi, I want to mitigate or remove the ciphers from more than 20 machines to mitigate this vulnerability. Is it possible to achieve this using any .reg scripts? If so, could you please provide me with the necessary script? This will help us address the vulnerability promptly. Additionally, could you confirm that this mitigation or ciphers removal won't impact any other services on our Windows endpoints? Q: How to fix Birthday attacks against TLS ciphers with 64bit (Sweet32) -CVE-2016-2183?

Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
0 comments No comments
{count} votes

Accepted answer
  1. Thameur-BOURBITA 36,266 Reputation points Moderator
    2024-01-21T16:28:30.91+00:00

    Hi @Sujith R

    You can user registry key to remove certain specific ciphers a reboot of the machine is required:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL\00010002
    

    117334-ci3.png


    Please don't forget to accept helpful answer


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.