[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Patches for Windows (English)'
autonotify at us.ibm.com
autonotify at us.ibm.com
Fri Jul 13 02:01:29 PDT 2012
Fixlet Site - 'Patches for Windows (English)'
Current Version: 1630 Published: Thu, 12 Jul 2012 11:30:33 GMT
New Fixlets:
============
***************************************************************
Title: 2728973: Unauthorized Digital Certificates Could Allow Spoofing - Windows XP / 2003
Severity: N/A
Fixlet ID: 272897301
Fixlet Link: http://technet.microsoft.com/en-us/security/advisory/2728973
Fixlet Description: Microsoft is aware of Microsoft certificate authorities that are outside our recommended secure storage practices. Upon a routine review, we are placing these certificates in the Untrusted Certificate Store, and replacing them with new certificate authorities that meet our high standard of public-key infrastructure (PKI) management. We are unaware of any misuse of the certificate authorities, but are taking pre-emptive action to protect customers. This issue affects all supported releases of Microsoft Windows. Microsoft is providing an update for all supported releases of Microsoft Windows. The update places the following intermediate CA certificates in the Untrusted Certificate Store: Microsoft Genuine Windows Phone Public Preview CA01 Microsoft IPTVe CA Microsoft Online CA001 Microsoft Online Svcs BPOS APAC CA1 Microsoft Online Svcs BPOS APAC CA2 Microsoft Online Svcs BPOS APAC CA3 Microsoft Online Svcs BPOS APAC CA4 Microsoft Online Svcs BPOS APAC CA5 Microsoft Online Svcs BPOS APAC CA6 Microsoft Online Svcs BPOS CA1 Microsoft Online Svcs BPOS CA2 Microsoft Online Svcs BPOS CA2 (2 certificates) Microsoft Online Svcs BPOS EMEA CA1 Microsoft Online Svcs BPOS EMEA CA2 Microsoft Online Svcs BPOS EMEA CA3 Microsoft Online Svcs BPOS EMEA CA4 Microsoft Online Svcs BPOS EMEA CA5 Microsoft Online Svcs BPOS EMEA CA6 Microsoft Online Svcs CA1 (2 certificates) Microsoft Online Svcs CA3 (2 certificates) Microsoft Online Svcs CA4 (2 certificates) Microsoft Online Svcs CA5 (2 certificates) Microsoft Online Svcs CA6After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: 2728973: Unauthorized Digital Certificates Could Allow Spoofing - Windows Vista / 7 / 2008 / 2008 R2
Severity: N/A
Fixlet ID: 272897303
Fixlet Link: http://technet.microsoft.com/en-us/security/advisory/2728973
Fixlet Description: Microsoft is aware of Microsoft certificate authorities that are outside our recommended secure storage practices. Upon a routine review, we are placing these certificates in the Untrusted Certificate Store, and replacing them with new certificate authorities that meet our high standard of public-key infrastructure (PKI) management. We are unaware of any misuse of the certificate authorities, but are taking pre-emptive action to protect customers. This issue affects all supported releases of Microsoft Windows. Microsoft is providing an update for all supported releases of Microsoft Windows. The update places the following intermediate CA certificates in the Untrusted Certificate Store: Microsoft Genuine Windows Phone Public Preview CA01 Microsoft IPTVe CA Microsoft Online CA001 Microsoft Online Svcs BPOS APAC CA1 Microsoft Online Svcs BPOS APAC CA2 Microsoft Online Svcs BPOS APAC CA3 Microsoft Online Svcs BPOS APAC CA4 Microsoft Online Svcs BPOS APAC CA5 Microsoft Online Svcs BPOS APAC CA6 Microsoft Online Svcs BPOS CA1 Microsoft Online Svcs BPOS CA2 Microsoft Online Svcs BPOS CA2 (2 certificates) Microsoft Online Svcs BPOS EMEA CA1 Microsoft Online Svcs BPOS EMEA CA2 Microsoft Online Svcs BPOS EMEA CA3 Microsoft Online Svcs BPOS EMEA CA4 Microsoft Online Svcs BPOS EMEA CA5 Microsoft Online Svcs BPOS EMEA CA6 Microsoft Online Svcs CA1 (2 certificates) Microsoft Online Svcs CA3 (2 certificates) Microsoft Online Svcs CA4 (2 certificates) Microsoft Online Svcs CA5 (2 certificates) Microsoft Online Svcs CA6After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
More information about the BigFix-Announcements
mailing list