Update for minimum certificate key length - Microsoft Security Advisory (2661254)ID: oval:org.secpod.oval:def:6736 | Date: (C)2012-08-25 (M)2021-06-21 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft Security Advisory, 2661254. The update is required to fix spoofing vulnerability. A flaw is present in the application, which fails to properly handle certificates with RSA keys less than 1024 bits in length. Successful exploitation could allow attackers to spoof content, perform phishing attacks, or perform man-in-the-middle attacks.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |