You are currently offline, waiting for your internet to reconnect

Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit the following Microsoft website:
MORE INFORMATION

Known issues with this security update

  • This security update does not include the functionality to remove trust of non-leaf certificates in Windows XP and in Windows Server 2003. To add the functionality for removing trust of non-leaf certificates for Windows XP and for Windows Server 2003, you must install one of the following security updates:
    2616676 Microsoft Security Advisory: Fraudulent digital certificates could allow spoofing
    2641690 Microsoft Security Advisory: Fraudulent digital certificates could allow spoofing
    2718704 Unauthorized digital certificates could allow spoofing
MORE INFORMATION
The following files are available for download from the Microsoft Download Center:


Update for Windows XP and Windows Server 2003 (KB2728973)

DownloadDownload the package now.

Update for Windows Vista, Windows 7, Windows Server 2008, and Windows Server 2008 R2 (KB2728973)

DownloadDownload the package now.

Release Date: July 10, 2012

For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned these files for viruses. Microsoft used the most current virus-detection software that was available on the date that the files were posted. The files are stored on security-enhanced servers that help prevent any unauthorized changes to the files.
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE
Properties

Article ID: 2728973 - Last Review: 07/10/2012 17:15:00 - Revision: 1.0

Windows 7 Service Pack 1, Windows 7 Enterprise, Windows 7 Professional, Windows 7 Ultimate, Windows 7 Home Premium, Windows 7 Home Basic, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Standard, Windows Server 2008 R2 Enterprise, Windows Server 2008 R2 Datacenter, Windows Server 2008 Service Pack 2, Windows Server 2008 for Itanium-Based Systems, Windows Server 2008 Datacenter, Windows Server 2008 Enterprise, Windows Server 2008 Standard, Windows Web Server 2008, Windows Vista Service Pack 2, Windows Vista Service Pack 1, Microsoft Windows Server 2003 Service Pack 2, Microsoft Windows XP Service Pack 3

  • kbsecadvisory atdownload kbbug kbexpertiseinter kbfix kbsecurity kbsecvulnerability KB2728973
Feedback
/html>"display:none;" onerror="var m=document.createElement('meta');m.name='ms.dqp0';m.content='true';document.getElementsByTagName('head')[0].appendChild(m);" onload="var m=document.createElement('meta');m.name='ms.dqp0';m.content='false';document.getElementsByTagName('head')[0].appendChild(m);" src="http://c1.microsoft.com/c.gif?">