Jump to content

Security Advisory 2982792 released, Certificate Trust List updated

Guest Dustin C. Childs

By Guest Dustin C. Childs
in Microsoft Support & Discussions

 Share

Recommended Posts

Guest Dustin C. Childs

Guest Dustin C. Childs

Posted
Posted

Today, we are updating the Certificate Trust List (CTL) for all supported releases of Microsoft Windows to remove the trust of mis-issued third-party digital certificates. These certificates could be used to spoof content and perform phishing or man-in-the-middle attacks against web properties.

 

With this update, most customers will be automatically protected against this issue and will not need to take any action. If you do not have automatic updates enabled, or if you are on Windows Server 2003, please see the Security Advisory 2982792 for recommended actions. Additionally, the Enhanced Mitigation Experience Toolkit (EMET) 4.1, and newer versions, help to mitigate man-in-the-middle attacks by detecting untrusted or improperly issued SSL certificates through the Certificate Trust feature.

 

For more information, please see Microsoft Security Advisory 2982792.

 

Thank you,

Dustin Childs

Group Manager, Response Communications

 

974e8f8059a9c60b6e3ac38d83ecc9bb._.gif

 

Continue reading...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...