Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mardi 24 novembre 2015

Vulnerable Dell Self-Signed Root certificates (CERT-EU Security Advisory 2015-750)

Some Dell laptops and desktops come with a pre-installed self-signed root certificate under the name of eDellRoot and in some occasions have also an installed another self-signed root certificate under the name of DSDTestProvider. This is a potential security vulnerability that makes it easy for attackers to hijack Internet connections and masquerade as trusted websites. That security vulnerability compromises the security of encrypted HTTPS connections.

Lien vers l'article source

Auteur: Cert EU

Catégories: CertEUNombre de vues: 252


Événements SSI