VULHUB ™

A security weakness has been reported in the PKI implementation used by Microsoft Internet Explorer for SSL. According to the report, the browser does not warn the user if the root CA certificate is expired. This occurs when the browser has a "newer" version of the CA certificate in its store. It should be noted that this vulnerability may lie in the operating system rather than Explorer. If this is the case, other applications may be affected. Version 6.0SP1 was reported vulnerable. It is likely that prior releases are as well.

A security weakness has been reported in the PKI implementation used by Microsoft Internet Explorer for SSL. According to the report, the browser does not warn the user if the root CA certificate is expired. This occurs when the browser has a "newer" version of the CA certificate in its store. It should be noted that this vulnerability may lie in the operating system rather than Explorer. If this is the case, other applications may be affected. Version 6.0SP1 was reported vulnerable. It is likely that prior releases are as well.