Microsoft Windows CryptoAPI Spoofing Vulnerability

book

Article ID: 145207

calendar_today

Updated On:

Products

CA Test Data Manager (Data Finder / Grid Tools)

Issue/Introduction

Microsoft has identified Windows CryptoAPI Spoofing Vulnerability [CVE-2020-0601]. For more information about this vulnerability: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601 


 1)      Do you have systems that are vulnerable to these exploits that process, store, or handle any Client data?

2)  

Cause

External Exploitation of Security hole in Microsoft OS

Environment

Any Servers or Laptops where Client Data may reside.

Resolution

We (Broadcom Cyber Security) has pushed the patch in January 2020 for GTSO managed Desktop/Laptop and Servers.