Windows updated with better checking for bad digital certs after Flame malware incident
Having already pushed one patch to servers as part of its response to the recently discovered Flame trojan, Microsoft is making another adjustment on Windows Vista, Windows 7, and Windows Server 2008 machines. A new update going out lets revoked certificates be published and recognized much faster, which would protect against a vulnerability exploited by Flame to fake its way in as a legitimate update. Informationweek has more information on the old OCSP method used to set revocation status, and also points out another vulnerability in XML Core Services the folks in Redmond is warning people of this week and has already released a "fix it" solution for. Hit the source link to get all the details and grab the update, IT types may want to update their firewalls with the new URLs being put into use for the lists.