Detalji

Ispravljena je nova ranjivost operacijskog sustava Microsoft Windows. Problem je izazvan pogreškom neovlaštenog korištenja određenih SSL certifikata. Zlonamjerni napadač može iskoristiti nedostatak za dekriptiranje SSL prometa zloupotrebljavajući DNS poslužitelje i koristeći krivotvorene certifikate. Za popis ranjivih platformi preporuča se čitanje originalne preporuke. Svi se korisnici upućuju na čitanje izvornog teksta preporuke radi boljeg informiranja te na korištenje nadograđenih inačica kako bi otklonili moguće probleme. 

Microsoft Windows Fraudulent SSL Certificates Information Disclosure

VUPEN ID 	VUPEN/ADV-2011-0753
CVE ID 	GENERIC-MAP-NOMATCH
 
CWE ID 	Available in VUPEN VNS Customer Area
CVSS V2 	Available in VUPEN VNS Customer Area
Rated as 	Moderate Risk 
Impact 	Available in VUPEN VNS Customer Area
Authentication Level 	Available in VUPEN VNS Customer Area
Access Vector 	Available in VUPEN VNS Customer Area
Release Date 	2011-03-24
Share 	Twitter LinkedIn Facebook Delicious Digg Slashdot

Technical Description

A security issue has been identified in Microsoft Windows, which could allow attackers to gain knowledge of sensitive information. This issue is caused by an error related to the use of several revoked and fraudulent SSL certificates for public websites, which could allow attackers to decrypt SSL traffic sent to legitimate web sites by manipulating the DNS servers and using the fraudulent certificates.

Affected Products

Microsoft Windows XP Service Pack 3
Microsoft Windows XP Professional x64 Edition Service Pack 2
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 x64 Edition Service Pack 2
Microsoft Windows Server 2003 SP2 (Itanium)
Microsoft Windows Vista Service Pack 1
Microsoft Windows Vista Service Pack 2
Microsoft Windows Vista x64 Edition Service Pack 1
Microsoft Windows Vista x64 Edition Service Pack 2
Microsoft Windows Server 2008 (32-bit)
Microsoft Windows Server 2008 (32-bit) Service Pack 2
Microsoft Windows Server 2008 (x64)
Microsoft Windows Server 2008 (x64) Service Pack 2
Microsoft Windows Server 2008 (Itanium)
Microsoft Windows Server 2008 (Itanium) Service Pack 2
Microsoft Windows 7 (32-bit)
Microsoft Windows 7 (32-bit) Service Pack 1
Microsoft Windows 7 (x64)
Microsoft Windows 7 (x64) Service Pack 1
Microsoft Windows Server 2008 R2 (x64)
Microsoft Windows Server 2008 R2 (x64) Service Pack 1
Microsoft Windows Server 2008 R2 (Itanium)
Microsoft Windows Server 2008 R2 (Itanium) Service Pack 1

Solution 

Install the update 2524375 :
http://windowsupdate.microsoft.com

References

http://www.vupen.com/english/advisories/2011/0753
http://www.microsoft.com/technet/security/advisory/2524375.mspx
http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html

Changelog 

2011-03-24 : Initial release

Idi na vrh