 | |
| |
| 10 Nov 2011 | |
| Windows 7 Home Premium 32 bit 5,681 posts In a house with a cat trying to kill me | Microsoft Security Advisory, Fraudulent Digital Certificates Quote: Microsoft is aware that DigiCert Sdn. Bhd, a Malaysian subordinate certification authority (CA) under Entrust and GTE CyberTrust, has issued 22 certificates with weak 512 bit keys. These weak encryption keys, when broken, could allow an attacker to use the certificates fraudulently to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer. While this is not a vulnerability in a Microsoft product, this issue affects all supported releases of Microsoft Windows. DigiCert Sdn. Bhd is not affiliated with the corporation DigiCert, Inc., which is a member of the Microsoft Root Certificate Program. There is no indication that any certificates were issued fraudulently. Instead, cryptographically weak keys have allowed some of the certificates to be duplicated and used in a fraudulent manner. Microsoft is providing an update for all supported releases of Microsoft Windows that revokes the trust in DigiCert Sdn. Bhd. The update revokes the trust of the following two intermediate CA certificates:
Microsoft Security Advisory (2641690) - CNET Spyware, viruses, & security Forums Microsoft Security Advisory (2641690): Fraudulent Digital Certificates Could Allow Spoofing Last edited by Borg 386; 10 Nov 2011 at 08:17 PM.. |
My System Specs | |
| 12 Nov 2011 | |
| Win 7 Ultimate 64-bit. SP1. 1,236 posts | Windows 7 SP1 Update Removes Fraudulent Digital Certificates ... Windows 7 SP1 Update Removes Fraudulent Digital Certificates That Could Allow Spoofing Quote: Microsoft has issued an update designed to remove trust for two Intermediate Certificate Authorities (CA) certificates from DigiCert Sdn. Bhd. DigiCert Sdn. Bhd, is a subordinate certification authority (CA) of Entrust and GTE, based in Malaysia, and the Redmond company provided a heads-up of this refresh as of the start of November 2011. KB 2641690 is now available for download for users of all supported versions of Windows, including Windows 7 Service Pack 1 (SP1). Jerry Bryant, group manager, Response Communications Trustworthy Computing Group, revealed that the software giant also published Microsoft Security Advisory (2641690), offering users additional details about the transition of DigiCert Sdn.Bhd certificates to the Microsoft Untrusted Certificate Store. |
| My System Specs |
| 12 Nov 2011 | |
| Windows 7 HP 64bit, Windows 8 Pro w/Media Center 64bit 2,399 posts Covington, La | I got that update yesterday 11/10 through windows update. I was wondering why it was offered out of cycle and couldn't find the KB article. Jim  |
| My System Specs |
| . |
| |
 |
Microsoft Security Advisory, Fraudulent Digital Certificates problems?
« Feds: Cyber Criminals Hijacked 4 Million Computers
|
Beware: Steam Hacked, Database Containing Credit Card & Password Info »
| Thread Tools | |
| Similar help and support threads for: Microsoft Security Advisory, Fraudulent Digital Certificates | ||||
| Thread | Forum | |||
| Fraudulent Digital Certificates Could Allow Spoofing | Security News | |||
| Security advisory: Fraudulent digital certificates could allow spoofin | Security News | |||
| Microsoft warns: Fraudulent digital certificates issued for high-value | Security News | |||
| Fraudulent digital certificates - Hackers exploit chink in Web's armor | Security News | |||
| MS releases important fix for fraudulent certificates | System Security | |||
All times are GMT -5. The time now is 07:59 PM.
