MS KB2862973: Update for Deprecation of MD5 Hashing Algorithm for Microsoft Root Certificate Program

This script is Copyright (C) 2013-2017 Tenable Network Security, Inc.


Synopsis :

The remote host is missing an update that improves cryptography and
digital certificate handling in Windows.

Description :

The remote host is missing Microsoft KB2862973, an update that
restricts the use of certificates with MD5 hashes. This restriction is
limited to certificates issued under roots in the Microsoft root
certificate program. This update increases the difficulty of some
spoofing, phishing, and man-in-the-middle attacks.

Note that KB2862966 must also be installed in order for these changes to
have any effect.

See also :

http://technet.microsoft.com/en-us/security/advisory/2862973
http://support.microsoft.com/kb/2862966

Solution :

Microsoft has released a set of patches for Windows Vista, 2008, 7,
2008 R2, 8 and 2012.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N)

Family: Windows

Nessus Plugin ID: 69334 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now