Blog: How Tos
The lowdown on the SKIP-TLS and FREAK flaws UPDATE
Following this week’s disclosure of the FREAK attack, and yesterday’s post where we covered impacts and remediation options Microsoft have now stepped up with this advisory https://technet.microsoft.com/en-us/library/security/3046015.
We did cover clients/browsers but here is a dedicated listing, current as of yesterday 5th March:
| Browser | Status |
| Internet Explorer | Security advisory |
| Chrome on Mac OS | Patch available now |
| Chrome on Android | … |
| Safari on Mac OS | Patch expected next week |
| Safari on iOS | Patch expected next week |
| Stock Android Browser | … |
| Blackberry Browser | … |
| Opera on Mac OS | … |
| Opera on Linux | … |
To check your browser to see if it’s vulnerable this tool gives a one-click answer:
https://freakattack.com/clienttest.html
Qualys’ SSL Labs also have a one-click client test tool:
https://dev.ssllabs.com/ssltest/viewMyClient.html
