|22 Jan 2014||#1|
| || |
Changes in Windows Authenticode Signature Verification [Dec 13, 2013]
Does some of you have enable the Authenticode Signature Verification in their Registry settings since this: Microsoft Security Bulletin MS13-098 Vulnerability in Windows Could Allow Remote Code Execution (2893294)
??? ...It has to be done before June 10, 2014 (for those interrested) which i did.
Test the Improvement to Authenticode Signature Verification.
Microsoft recommends that customers test how this change to Authenticode signature verification behaves in their environment by enabling it prior to June 10, 2014. To enable the Authenticode signature verification improvements, modify the registry to add the EnableCertPaddingCheck value as detailed below.
Microsoft Security Advisory (2915720)
Changes in Windows Authenticode Signature Verification
Published: Tuesday, December 10, 2013 | Updated: Friday, December 13, 2013
Microsoft is announcing the availability of an update for all supported releases of Microsoft Windows to change how signatures are verified for binaries signed with the Windows Authenticode signature format. The change is included with Security Bulletin MS13-098, but will not be enabled until June 10, 2014. Once enabled, the new default behavior for Windows Authenticode signature verification will no longer allow extraneous information in the WIN_CERTIFICATE structure. Note that after June 10, 2014, Windows will no longer recognize non-compliant binaries as signed.
Recommendation. Microsoft recommends that by June 10, 2014, executables authors ensure that all signed binaries comport with this new verification behavior by containing no extraneous information in the WIN_CERTIFICATE structure. Microsoft also recommends that customers appropriately test this change to evaluate how it will behave in their environments. Please see the Suggested Actions section of this advisory for more information.
|My System Specs|
|Similar help and support threads for2: Changes in Windows Authenticode Signature Verification [Dec 13, 2013]|
|Office 2013 --OUTLOOK 2013 requires Internet connection to set up||Microsoft Office|
|Verification: Windows 7 Upgrade Retail Disc on new HDD||Installation & Setup|
|Outlook 2013 (Office 2013) Help to De-Uglify||Microsoft Office|
|ATM 2013 (Acronis True Image 2013) with USB3 HDD||Backup and Restore|
|Windows Live Account Blocked - How Do I Obtain Verification Code?||Browsers & Mail|
|Our Sites ||Site Links ||About Us ||Find Us |
© Designer Media Ltd
All times are GMT -5. The time now is 11:47 AM.