New
#101
-Article ID: 2728973 - Last Review: July 10, 2012 - Revision: 1.0
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing
-Article ID: 2732052 - Last Review: August 14, 2012 - Revision: 1.0
August 2012 cumulative time zone update for Windows operating systems
Summary:
This update supersedes and replaces update 2633952, which was released in December 2011. All additional time zone changes released as hotfixes after update 2633952 are incorporated in this update.
If you have already deployed update 2633952, read the descriptions of the specific time zone changes that are addressed in this article to determine whether you must deploy this update immediately. If systems are not directly affected, you can schedule deployment at the next available opportunity.
We recommend that you deploy the most current Windows cumulative time zone update to guarantee the consistency of the time zone database on all systems.
Files are available for download from the Microsoft Download Center:
August 2012 cumulative time zone update for Windows operating systems
-Article ID: 2744850 - Last Review: August 20, 2012 - Revision: 1.4
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs.
Introduction:
Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) is a password-based authentication protocol which is widely used as an authentication method in PPTP-based (Point to Point Tunneling Protocol) VPNs. Microsoft cautions that any organizations that use MS-CHAP v2 without encapsulation in conjunction with PPTP tunnels for VPN connectivity are running in a potentially nonsecure configuration.
Recommendations:
Microsoft suggests that organizations using MS-CHAP v2/PPTP implement the Protected Extensible Authentication Protocol (PEAP) in their networks. This mitigates this technique by encapsulating the MS-CHAP v2 authentication traffic in TLS.
Configure PPTP to use PEAP-MS-CHAP v2 for authentication:
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs
-Article ID: 2661254 - Last Review: August 21, 2012 - Revision: 2.1
Microsoft Security Advisory: Update for minimum certificate key length.
Introduction:
To reduce the risk of unauthorized exposure of sensitive information, Microsoft has released a nonsecurity update (KB 2661254) for all supported versions of Microsoft Windows. This update will block cryptographic keys that are less than 1024 bits long. This update does not apply to Windows 8 Release Preview or Windows Server 2012 Release Candidate because these operating systems already include the functionality to block the use of weak RSA keys that are less than 1024 bits long.
NOTE: Please read the "Known issues with this security update" & registry settings before any actions.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Update for minimum certificate key length
For x32bits:
Download: Update for Windows 7 (KB2661254) - Microsoft Download Center - Download Details
For x64bits:
Download: Update for Windows 7 for x64-based Systems (KB2661254) - Microsoft Download Center - Download Details
Last edited by NoN; 31 Aug 2012 at 18:52.