Sign up to save your podcasts
Or
Share Microsoft Issues Security Update to Fix "Curveball" Vulnerability | TWiT Bits
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Microsoft Issues Security Update to Fix "Curveball" Vulnerability | TWiT Bits
"CurveBall" is a spoofing vulnerability in the way the certificates are accepted without proper verification of the explicit curve parameters within the certificates. Essentially, this flaw allows an attacker to supply his own generated X.509 certificates by using an "explicit parameters" option to set those curve parameters.
Subscribe & watch the full Podcast:
https://twit.tv/sn/750
Hosts: Leo Laporte and Steve Gibson
You can find more about TWiT and subscribe to our full shows at https://twit.tv/shows/
View all episodes
By TWiT"CurveBall" is a spoofing vulnerability in the way the certificates are accepted without proper verification of the explicit curve parameters within the certificates. Essentially, this flaw allows an attacker to supply his own generated X.509 certificates by using an "explicit parameters" option to set those curve parameters.
Subscribe & watch the full Podcast:
https://twit.tv/sn/750
Hosts: Leo Laporte and Steve Gibson
You can find more about TWiT and subscribe to our full shows at https://twit.tv/shows/