Microsoft recommends that you update the security certificates

Posted: September 11, 2012 in IT Security News
Tags: ,

MicrosoftBy tradition, today Microsoft is planning to release another patch that fixes two critical vulnerabilities, and released an update to the antivirus application. But apart from this, the corporation reminds administrators of Windows to verify correctness used security certificates.

As of the scheduled security bulletin provides a fix for two critical vulnerabilities found in Microsoft Visual Studio Team Foundation Server 2010 (Service Pack 1) and System Center Configuration Manager. With their successful attacker could gain access to the system with elevated privileges. Along with this, the Corporation has released an update for Windows Malicious Software Removal Tool, which can be downloaded from the company’s servers.

But beyond that, Microsoft strongly recommends that administrators of Windows (OS) for a more detailed inspection of their systems for the presence of outdated security keys. Since the beginning of October of the current year the minimum RSA key will be increased up to 1024 bits for all supported versions of Windows, up to XP Service Pack 3. This means that the use of obsolete keys can lead to serious problems and failures in the system.

In other words, if the administrator will replace the keys before the October patch, then as soon as the update, Internet Explorer will block access to the SSL Web sites that use certificates with a key size of less than 1024 bits. Additionally Outlook 2010 can not connect to the mail server Exchange Server, do not use encryption and digital signatures. Applications and ActiveX, in which the key is less than 1024 bits, can be installed incorrectly, or you may experience other difficulties.

As stated in Microsoft, this summer, customers who wish to prepare for innovation, have downloaded the patch and test the functionality of the system. At present, the Corporation strongly recommends that administrators who have not yet had time to lead the audit used keys, download the update as soon as possible.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s