Manage updates with the Download App
Microsoft Windows Authenticode Signature Verification
by Carol~ 
- 4/10/12 1:29 PM
In Reply to: VULNERABILITIES / FIXES - April 10, 2012 by Carol~
Microsoft Windows Authenticode Signature Verification Security Bypass
Release Date : 2012-04-10
Crriticality level : Less critical
Ipact : Security Bypass
Where : From remote
Solution Status : Vendor Patch
Operating System: Microsoft Windows 7
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2008
Microsoft Windows Storage Server 2003
Microsoft Windows Vista
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional
Description:
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to the Windows Authenticode Signature Verification functionality insufficiently validating a PE (Portable Executable) file's file digest. This can be exploited to manipulate a signed executable file by e.g. adding malicious code without invalidating the signature.
Successful exploitation allows execution of arbitrary code, but requires a user or application to run a specially crafted, signed PE file that is considered trusted.
Solution:
Apply patches.
Provided and/or discovered by:
The vendor credits Robert Zacek and Igor Glucksmann, Avast Software.
Original Advisory:
MS12-024 (KB2653956):
http://technet.microsoft.com/en-us/security/bulletin/MS12-024
http://secunia.com/advisories/48581/
Unread
Read
Locked thread
Moderator
CNET Staff
Samsung Staff
Norton Authorized Support Team
AVG Staff
avast! Staff
Webroot Support Team
Acer Customer Experience Team
Windows Outreach Team
Dell Staff
Intel Staff
Question
Resolved question
General discussion
Tip
Alert or warning
Praise
Rant