Microsoft Windows Includes Some Invalid Comodo Certificates - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: OS (Microsoft) > Windows DLL (Any)

Vendors: Microsoft

Microsoft Windows Includes Some Invalid Comodo Certificates

SecurityTracker Alert ID: 1025248

SecurityTracker URL: http://securitytracker.com/id/1025248

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Updated: Jul 6 2011

Original Entry Date: Mar 23 2011

Impact: Modification of authentication information

Fix Available: Yes Vendor Confirmed: Yes

Version(s): XP SP3, 2003 SP2, Vista SP2, 2008 SP2, 7 SP1, 2008 R2 SP1; and prior service packs

Description: A vulnerability was reported in Microsoft Windows. A remote user may be able to spoof sites.

The operating system includes some invalid certificates. The vulnerability is due to the invalid certificates and not the operating system itself. Other browsers, applications, and operating systems are affected.

A partner of Comodo with Registration Authority capabilities suffered an internal security breach and the attacker caused seven certificates to be fraudulently issued. The certificates have since been revoked. However, with some applications and systems, a man-in-the-middle attack may prevent the application or system from contacting the relevant On-line Certificate Status Protocol (OSCP) system and determining that the certificate has been revoked.

The following common names are affected:

addons.mozilla.org
login.live.com
mail.google.com
www.google.com
login.yahoo.com
login.skype.com
global trustee

Microsoft reports that the following devices are also affected:

Windows Mobile 6.x
Windows Phone 7
Microsoft Kin
Zune HD 16GB, Zune HD 32GB, and Zune HD 64GB

Impact: A remote user may be able to spoof sites.

Solution: The vendor has issued a fix, available at:

http://support.microsoft.com/kb/2524375

The fix is also available via automatic update.

The vendor's advisory is available at:

http://www.microsoft.com/technet/security/advisory/2524375.mspx

Vendor URL: www.microsoft.com/technet/security/advisory/2524375.mspx (Links to External Site)

Cause: Configuration error

Underlying OS:

Message History: None.

Source Message Contents

Date: Wed, 23 Mar 2011 19:04:17 +0000
Subject: http://www.microsoft.com/technet/security/advisory/2524375.mspx


http://www.microsoft.com/technet/security/advisory/2524375.mspx

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC