11.325.2002 - MS02-065: Certificate Validation Flaw Might Permit Identity Spoofing (329115)

This article was previously published under Q329115 and replaces replaces Microsoft Knowledge Base article 328145. A newly discovered vulnerability that was announced on November 20, 2002, is closely related to the vulnerability that is discussed in the original version of the bulletin. Like that vulnerability, the new vulnerability involves a flaw in the way in which certificate validation is performed. However, this vulnerability might permit an attacker to gain control over a user's computer. Because a fix for this vulnerability was not included in the original version of the patch, Microsoft strongly recommends that customers install the new patch, even if they installed the original version of the patch. - Download Patch for Windows 98 - Download Patch for Windows NT - Download Patch for Windows NT Terminal Server Edition - View Microsoft Security Bulletin MS02-065 - View Microsoft Knowledge Base Article - 329115 - Visit Microsoft Corporation