Microsoft Security Advisory (2915720): Changes in Windows Authenticode Signature Verification...

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Location
Chicago, IL
Revision Note: V1.0 (December 10, 2013): Advisory published.
Summary: Microsoft is announcing the availability of an update for all supported releases of Windows to change how signatures are verified for binaries signed with the Windows Authenticode signature format. The change is included with Security Bulletin MS13-098, but will not be enabled until June 10, 2014. Once enabled, the new default behavior for Windows Authenticode signature verification will no longer allow extraneous information in the WIN_CERTIFICATE structure. Note that after June 10, 2014, Windows will no longer recognize non-compliant binaries as signed.

Continue reading...
 
Back
Top Bottom