This article summarizes the state of the Microsoft Schannel implementation of Transport Layer Security (TLS) 1.0 as it relates to all known vulnerabilities that have been reported to Microsoft as of the date of this article.
The Microsoft Schannel implementation of TLS 1.0 in Windows is fully patched against all known vulnerabilities that have been reported to Microsoft. Customers' computers are protected against these vulnerabilities if all the following conditions are true:
The version of Windows that you are using is still in support for security updates as defined by the Microsoft Support Lifecycle.
Windows is fully patched, and all available security updates are installed.
The Windows default configuration of Schannel for TLS 1.0 is used.
However, TLS 1.0 is an aging protocol. Therefore, we highly recommend that customers have a plan to accelerate their migration toward products that support TLS 1.2 and to make sure that all applications are using TLS 1.2 by default.