Microsoft has confirmed that Windows systems 10 and Windows Server 2016 were vulnerable to a flaw that allowed identity spoofing, but security patches that fix this vulnerability have already been released.

The vulnerability has been identified as CVE-2020-0601 and it is an error that allows identity spoofing affecting the Windows CryptoAPI (Crypt) and allows ECC certificates to be validated.

In turn, this would allow an attacker to forge digital signatures, disguising a malware application as a legitimate application. The user would not notice anything since this application would seem to come from a trusted source.

Said exploit, también podría permitir realizar ataques de Man-in-the-Middle y descifrar información confidencial sobre las conexiones de los usuarios dentro de cualquier aplicación de los sistemas afectados.

Cualquier software, incluyendo los que no son de Microsoft, que en su funcionamiento se vea incluída la funciónCertGetCertificateChain()para determinar si un certificado X.509 es legítimo, se verá afectado por esta vulnerabilidad.

Microsoft ha lanzado ya el parche de seguridad para esta vulnerabilidad, that is why, desde Intec, os recomendamos actualizar cuanto antes vuestros sistemas para evitar cualquier ataque que se aproveche de la misma.


Leave a Reply

Your email address will not be published. Required fields are marked *

More news
A
Read more »
A researcher manages to hack some concert tickets using AI
Read more »
Una nueva campaña de phishing suplanta a ChatGPT
Read more »
Nintendo suffers a data breach through a supplier
Read more »
Trying to make fun of a scammer is not a very good idea
Read more »