Akamai Technologiesは1月25日(米国時間)、「Exploiting a Critical Spoofing Vulnerability in Windows CryptoAPI｜Akamai」において、Windows CryptoAPIの重大な脆弱性に対する概念実証(PoC: Proof of Concept)をリリースしたと伝えた。この脆弱性は米国家安全保障局(NSA: ...

Akamaiは、CryptoAPIの脆弱性を利用したサイバー攻撃のPoCを公開した。同脆弱性を悪用すれば、なりすましが可能になるとされており、Windows 7などの古いバージョンに対しても修正パッチの適用が必要だと注意を喚起している。 この記事は会員限定です。

Proof of concept exploit code has been released by Akamai researchers for a critical Windows CryptoAPI vulnerability discovered by the NSA and U.K.'s NCSC allowing MD5-collision certificate spoofing.

Proof-of-concept (Poc) code has been released for a now-patched high-severity security flaw in the Windows CryptoAPI that the U.S. National Security Agency (NSA) and the U.K. National Cyber Security ...

Researchers have developed a proof-of-concept (PoC) exploit for a public x.509 certificate-spoofing vulnerability in the Windows CryptoAPI that the NSA and the National Cyber Security Center (NCSC) ...

WTF?! Akamai has unveiled a new security threat to Windows-based servers and data center machines based on a dangerous bug Microsoft fixed months ago. However, it seems almost no one bothered to ...

MS09-056 addresses two vulnerabilities that affect how the Windows CryptoAPI parses X.509 digital certificates. Applications on the Windows platform as well as Windows components such as the WinHTTP ...

This module provides encryption/decryption through the CryptoAPI. This is the standard API you can use regardless of the underlying dll used to do the encryption. These dlls are called Cryptographic ...