Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

Microsoft security advisory: Improperly issued digital certificates could allow spoofing


View products that this article applies to.

INTRODUCTION

Microsoft has released a security advisory about this issue for IT professionals. This update is being released for all supported versions of Microsoft Windows.

The security advisory contains additional security-related information. To view the security advisory, go to the following Microsoft website:

↑ Back to the top


More Information

In addition to addressing the certificates that are described in advisory 3050995, this update is cumulative and includes digital certificates that are described in the following previous advisories:

Prerequisites

In order to receive this update, you may have to have one or both of the following updates installed:
2677070 An automatic updater of revoked certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2
2813430 An update is available that enables administrators to update trusted and disallowed CTLs in disconnected environments in Windows

The following table summarizes the prerequisite updates.
Operating systemUpdate 2677070Update 2813430
Windows Vista, Windows Server 2008YesYes
Windows 7, Windows Server 2008 R2YesYes
Windows 8, Windows Server 2012 NoYes
Windows 8.1, Windows Server 2012 R2 NoNo

Update for Windows 8, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2

Because these systems are automatically protected, no action is needed.


Update for Windows Vista, Windows 7, Windows Server 2008, and Windows Server 2008 R2

Customers should install the automatic updater of revoked certificates. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
2813430 An update is available that enables administrators to update trusted and disallowed CTLs in disconnected environments in Windows

Update for Windows Server 2003 (KB3050995)

Download Download the package now.
Virus-scan claim
Microsoft scanned this file for viruses by using the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to it.

How to download Microsoft support files

For information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.

↑ Back to the top


Applies to:

↑ Back to the top

Keywords: kb, kbsurveynew, kbmustloc, kblangall, kbsecreview, kbsecurity, kbsecadvisory, kbinfo, kbexpertiseinter, kbsecvulnerability

↑ Back to the top

Article Info
Article ID : 3050995
Revision : 3
Created on : 4/13/2020
Published on : 4/13/2020
Exists online : False
Views : 292