Fraudulent DigiNotar Certificates HTTPS Spoofing Vulnerability
| Check Point Reference: | CPAI-2011-414 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Threat Research | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Web browsers | ||
| Vulnerability Description A security breach had been reported at DigiNotar, a certification authority present in the Trusted Root Certification Authorities Store on all supported versions of Microsoft Windows. Several of DigiNotar's digital certificates had been signed on behalf of a third party, without sufficiently validating its identity. These certificates may be used to spoof content, perform phishing attacks or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer.
|
||
|
Vulnerability Details The following certificates have been compromised: DigiNotar Root CA DigiNotar Root CA G2 DigiNotar PKIoverheid CA Overheid DigiNotar PKIoverheid CA Organisatie - G2 DigiNotar PKIoverheid CA Overheid en Bedrijven |
Protection Overview
This protection will detect and block the fraudulent DigiNotar Root certificates.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.