Re: **maillist:: Outlook S/MIME Vulnerability

From: Torbjörn Hovmark (torbjorn.hovmarkat_private)
Date: Wed Sep 04 2002 - 07:18:01 PDT

Next message: Paul Szabo: "Re: Compaq mount patch broken"

Previous message: Timothy J.Miller: "Re: **maillist:: Outlook S/MIME Vulnerability"
In reply to: Thomas Seliger: "Re: **maillist:: Outlook S/MIME Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Thomas,

> Since the failure of checking certificate chain correctly seems to be
> buried deeper in windows (maybe in some DLL? some info from
> microsoft would be greatly appreciated [...]

The CryptoAPI function CertVerifyCertificateChainPolicy() could be an
interesting starting point. However, I get the feeling it is more a matter
of similar errors being made by different people in different development
teams.


Best regards,

Torbjörn Hovmark

______________________________________
Abtrusion Security AB
http://www.abtrusion.com

Next message: Paul Szabo: "Re: Compaq mount patch broken"
Previous message: Timothy J.Miller: "Re: **maillist:: Outlook S/MIME Vulnerability"
In reply to: Thomas Seliger: "Re: **maillist:: Outlook S/MIME Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Sep 04 2002 - 11:58:31 PDT