Posts Tagged ‘IP-HTTPS certificates’

Vulnerabilities in Microsoft Windows

Vulnerabilities in Microsoft Windows

Multiple vulnerabilities in Microsoft Windows

1. Vulnerability in the processing of checking revocation IP-HTTPS certificates in Microsoft Windows

Danger: Low
Patch: Yes
Number of vulnerabilities: 1

CVE ID: CVE-2012-2549
Vector of operation: Remote
Impact: Security Bypass

Affected Products: Microsoft Windows Server 2008, Windows Server 2012

Affected versions: Microsoft Windows 2008 R2, Windows 2012

Description:

Which can be exploited by malicious people to bypass certain security restrictions.

The vulnerability is caused due to insufficient authentication certificates in IP-HTTPS component. A remote user can use the revoked certificate as valid.

Manufacturer URL: www.microsoft.com (more…)