Among its April 2015 patches, Microsoft has released an update that disables SSL 3.0 by default in Internet Explorer 11.
According to Maliha Qureshi, senior program manager of customer experience quality at Microsoft, enterprise customers can choose to enable SSL 3.0 for compatibility with their web applications, however it strongly recommended that they update their web servers and web applications to use latest security protocols such as TLS 1.2.
“Most customers have automatic updates enabled and will not need to take any action because these updates will be downloaded and installed automatically,” Qureshi said. “Customers who have automatic updates disabled need to check for updates and install this update manually.”
http://blogs.msdn.com/b/ie/archive/2015/04/14/april-2015-security-updates-for-internet-explorer.aspx
[…] well as disabling SSL 3.0 in Internet Explorer 11, the four critical patches all fixed remote code execution flaws. […]
[…] well as disabling SSL 3.0 in Internet Explorer 11, the four critical patches all fixed remote code execution flaws. […]