Fraudulent Digital Certificates Could Allow Spoofing - (2607712)

Author Message
awenlock

  • Total Posts : 255
  • Scores: 196
  • Reward points : 25620
  • Joined: 3/8/2005
  • Status: offline
Fraudulent Digital Certificates Could Allow Spoofing - (2607712) Thursday, September 01, 2011 6:00 PM (permalink)
0
Details have been emerging over the last few days about fraudulent digital certificates that have been issued from a comprised CA - DigiNotar.
 


 
Microsoft is aware of at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root Certification Authorities Store, on all supported releases of Microsoft Windows. Although this is not a vulnerability in a Microsoft product, Microsoft is taking action to protect customers. Microsoft has been able to confirm that one digital certificate affects all subdomains of google.com and may be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer. Microsoft is continuing to investigate how many more certificates have been fraudulently issued. As a precautionary measure, Microsoft has removed the DigiNotar root certificate from the Microsoft Certificate Trust List.
 

 
There are a number of articles on the net around this now but there are a couple of really good write ups over at ISC website. If you've not already read up on this issue then I suggest you take some time to catch up and see what action you might need to take.
 
Mozilla have also released an update to Firefox, 6.0.1, to help protect against this issue in Firefox.
 
Links:
 
Microsoft: http://www.microsoft.com/technet/security/advisory/2607712.mspx
ISC: https://isc.sans.edu/diary/DigiNotar+breach+-+the+story+so+far/11500
Mozilla: http://support.mozilla.com/en-US/kb/deleting-diginotar-ca-cert
 
 
Regards
Alan
<message edited by awenlock on Tuesday, September 11, 2012 5:24 PM>
 
#1
    awenlock

    • Total Posts : 255
    • Scores: 196
    • Reward points : 25620
    • Joined: 3/8/2005
    • Status: offline
    Re:Fraudulent Digital Certificates Could Allow Spoofing - (2607712) Tuesday, September 06, 2011 3:00 PM (permalink)
    0
    Microsoft have now released a patch for each of the Windows OS's currently in support.
     
    This update puts the following CA's into the untrusted store:
     
    •DigiNotar Root CA
    •DigiNotar Root CA G2
    •DigiNotar PKIoverheid CA Overheid
    •DigiNotar PKIoverheid CA Organisatie - G2
    •DigiNotar PKIoverheid CA Overheid en Bedrijven
     
    You can download the patches using the link below or through Windows Update
     
    Link: http://support.microsoft.com/kb/2607712
     
    Regards
    Alan
    <message edited by awenlock on Tuesday, September 06, 2011 3:02 PM>
     
    #2
      Online Bookmarks Sharing: Share/Bookmark

      Jump to:

      Current active users

      There are 0 members and 2 guests.

      Icon Legend and Permission

      • New Messages
      • No New Messages
      • Hot Topic w/ New Messages
      • Hot Topic w/o New Messages
      • Locked w/ New Messages
      • Locked w/o New Messages
      • Read Message
      • Post New Thread
      • Reply to message
      • Post New Poll
      • Submit Vote
      • Post reward post
      • Delete my own posts
      • Delete my own threads
      • Rate post

      2000-2013 ASPPlayground.NET Forum Version 3.9