Vulnerability Team

Some companies are  aware of public reports of the existence of fraudulent SSL certificates. These fraudulent SSL certificates could be used by an attacker to masquerade as a trusted website. Multiple web browser vendors have provided updates to recognize and block these fraudulent SSL certificates.

Mozilla has updated Firefox 4.0, 3.6, and 3.5. Additional information can be found in the Mozilla Security Blog.

Microsoft has released updates for various platforms in Microsoft Knowledge Base Article 2524375. Additional information can be found in Microsoft Security Advisory 2524375.

The Vulnerability Team adviced to users and administrators to review and apply the updates notifications
necessary to help mitigate the risks.

Relevant Url(s):

<http://blog.mozilla.com/security/2011/03/22/firefox-blocking-fraudulent-certificates/>

<http://www.microsoft.com/technet/security/advisory/2524375.mspx>

<http://support.microsoft.com/kb/2524375>