Jump to content
Login new information ×
Login new information

Microsoft releases certificate spoof fix for Windows XP, Server 2003

Matsuda

By Matsuda
in Security & Privacy News

 Share

Recommended Posts

Matsuda

Matsuda

Posted
Posted

Microsoft_Venture_pack.jpg

On Monday of this week Microsoft annouced measures take to respond to the creation of an improper intermediate certificate authority (CA) by the CA for the government of France, and the use of that intermediate CA to sign fake certificates for domains in the google.com and other domains for which they had no authority.

Initially, Microsoft released countermeasures to protect users against any potential effects of these certificates —although none have been reported and the problem seems to have been contained — but they only released that protection for devices running supported editions of Windows Vista, Windows 7, Windows 8, Windows 8.1, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Phone 8 — not for Windows XP or Windows Server 2003.

Tonight, Microsoft released separate certificate protection for Windows XP and Windows Server 2003 users. The protection may be installed from Microsoft Update or downloaded from the Microsoft Download Center.

In their advisory on the issue Microsoft thanks Google's Adam Langley and the Google Chrome Security Team for bringing the incident to their attention and working with them on the response.



Link to comment
Share on other sites
  • Replies 5
  • Views 1.7k
  • Created
  • Last Reply

Top Posters In This Topic

  • SPECTRUM

    2

  • smallhagrid

    2

  • humble3d

    1

  • Matsuda

    1

Popular Days

Top Posters In This Topic

Popular Days

smallhagrid

smallhagrid

Posted
Posted

As usual mikr0$0ft keeps the ante up for OSes it says are dead already:

Security Update for Windows XP and Windows Server 2003 (KB2917500)
Validation Required

Meh.

Link to comment
Share on other sites
smallhagrid

smallhagrid

Posted
Posted

Thanks Spectrum.

I took care of WGA & WPA long ago.

A non-m$ source of this patch is what I would search for rather than letting their site examine my OS...

Thanks.

Link to comment
Share on other sites
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...