Article ID: 293816 - View products that this article applies to.
This article was previously published under Q293816
IMPORTANT: This article contains information about modifying the registry. Before you modify the registry, make sure to back it up and make sure that you understand how to restore the registry if a problem occurs. For information about how to back up, restore, and edit the registry, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/256986/EN-US/ )Description of the Microsoft Windows Registry
In early March 2001, VeriSign, Inc., announced that it had issued two digital certificates to an individual who fraudulently claimed to be a Microsoft employee. This issue is discussed at length in Microsoft Security Bulletin MS01-017
(http://www.microsoft.com/technet/security/bulletin/ms01-017.mspx). This article describes how to determine if you have enabled the trust for these certificates and how to remove that trust.
For additional information about this issue, click the article number below to view the article in the Microsoft Knowledge Base:
293818For additional information about how to recognize these fraudulent certificates, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/293818/EN-US/ )Erroneous VeriSign-Issued Digital Certificates Pose Spoofing Hazard
293817For additional information about how to remove VeriSign Commercial Software Publishers CA from the trusted store, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/293817/EN-US/ )How to Recognize Erroneously-Issued VeriSign Code-Signing Certificates
293819For additional information about how to obtain a tool to revoke these fraudulent certificates, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/293819/EN-US/ )How to Remove a Root Certificate from the Trusted Root Store
(http://support.microsoft.com/kb/293811/EN-US/ )Update Available to Revoke Fraudulent Microsoft Certificates Issued by VeriSign
When you click Always trust content from Microsoft Corporation in the warning dialog box that appears when you encounter these certificates, "Microsoft Corporation" is added to the list of trusted publishers. To remove this explicit trust:
Microsoft Internet Explorer 5, 5.01, 5.5
Internet Explorer 4.x
Editing the RegistryWARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.
If "Microsoft Corporation" appears multiple times, use these steps to remove these fraudulent certificates:
Article ID: 293816 - Last Review: February 19, 2007 - Revision: 2.5
Contact us for more help
Connect with Answer Desk for expert help.