[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Unauthorized Digital Certificates Could Allow Spoofing

To: Georgi Guninski <guninski@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Unauthorized Digital Certificates Could Allow Spoofing
From: Joel Esler <jesler@xxxxxxxxxxxxxx>
Date: Mon, 4 Jun 2012 10:04:48 -0400

This is related to the Flame malware.

-- 
Joel Esler


On Monday, June 4, 2012 at 9:51 AM, Georgi Guninski wrote:

> http://technet.microsoft.com/en-us/security/advisory/2718704
> Microsoft is aware of active attacks using unauthorized digital certificates 
> derived from a Microsoft Certificate Authority.
> 
> what does this mean?
> 
> m$ inadvertently gave signing rights to lusers, they got rooted 
> or something else?
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Unauthorized Digital Certificates Could Allow Spoofing
  - From: Georgi Guninski

Prev by Date: Re: [Full-disclosure] Full-Disclosure Digest, Vol 88, Issue 2 Re: NSA Cyber security program [ maybe off-topic ]
Next by Date: Re: [Full-disclosure] [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing
Previous by thread: Re: [Full-disclosure] Unauthorized Digital Certificates Could Allow Spoofing
Next by thread: Re: [Full-disclosure] [Full Disclosure] Unauthorized Digital Certificates Could Allow Spoofing
Index(es):
- Date
- Thread