The famous Microsoft Verisign Digital Certificates Spoofing Hazard

Cf. Nota original da Microsoft a respeito: “[…] This update resolves the “Erroneous VeriSign-Issued Digital Certificates Pose Spoofing Hazard” security vulnerability, and is discussed in Microsoft Security Bulletin MS01-017. Download now to prevent an unauthorized user from running code on your computer by digitally signing programs as “Microsoft Corporation.” VeriSign, Inc. issued two VeriSign digital certificates to an individual who fraudulently claimed to be a Microsoft employee; this allows the individual to sign programs, ActiveX® controls, Office macros, and other executable content as originating from “Microsoft Corporation.” This update prevents the two erroneously signed certificates from being accepted as valid. Note: This update was released prior to April 2, 2001” – O caso pode ser estudado aqui. / (2)

Leave a Reply

You must be logged in to post a comment.