Can a fixlet be provided for Microsoft Security Advisory (2728973)? This patch was released (July 10, 2012).
Unauthorized Digital Certificates Could Allow Spoofing
Summary:
Microsoft is aware of Microsoft certificate authorities that are outside our recommended secure storage practices. Upon a routine review, we are placing these certificates in the Untrusted Certificate Store, and replacing them with new certificate authorities that meet our high standard of public-key infrastructure (PKI) management. We are unaware of any misuse of the certificate authorities, but are taking pre-emptive action to protect customers. This issue affects all supported releases of Microsoft Windows.
IBM, Can you please create fixlet for another security advisory also released on 10th July 2012 “Vulnerabilities in Gadgets Could Allow Remote Code Execution Security Advisory 2719662” ?
Hey Zoogs, I’m getting the same thing here, but with WinXP machines (haven’t applied to our servers yet). Troubleshooting right now to see what I can figure out. Let me know if you come up with anything first!
Based on Martins blog on the command differences between 7/13 fixlet and more current fixlet, does this mean that the issue is resolved?
I’m not the bigfix admin in my organization, and the fixlet 2728973 has been hidden so that it does not cause issues with other servers needing other tasks or patches applied to them.
Do I need to inform my bigfix admins to unhide the fixlet and run with it now?