ID de Prueba:	1.3.6.1.4.1.25623.1.0.802403
Categoría:	Windows
Título:	Microsoft Windows Fraudulent Digital Certificates Spoofing Vulnerability (2641690)
Resumen:	Microsoft Windows operating system is prone to a spoofing vulnerability.;; This VT has been superseded by KB2718704 Which is addressed in VT gb_unauth_digital_cert_spoofing_vuln.nasl (OID:1.3.6.1.4.1.25623.1.0.802634).
Descripción:	Summary: Microsoft Windows operating system is prone to a spoofing vulnerability. This VT has been superseded by KB2718704 Which is addressed in VT gb_unauth_digital_cert_spoofing_vuln.nasl (OID:1.3.6.1.4.1.25623.1.0.802634). Vulnerability Insight: The flaw is due to an error when handling the fraudulent digital certificates issued by Entrust and GTE CyberTrust. It is not properly validating its identity. Vulnerability Impact: Successful exploitation will allow remote attackers to spoof content, perform phishing attacks or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer. Affected Software/OS: - Microsoft Windows 7 Service Pack 1 and prior - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows Vista Service Pack 2 and prior - Microsoft Windows Server 2003 Service Pack 2 and prior - Microsoft Windows Server 2008 Service Pack 2 and prior Solution: Apply the Patch from the referenced advisory. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.