MS patches bogus certificate hole on NT, XP
Thomas C. Greene,
The Register
2002-09-05
Microsoft has finally begun patching a severe security flaw in its implementation of digital-certificate basic-constraints checking which we've been ranting about for nearly a month. The stuff-up makes it possible for SSL and e-mail signature certs to be forged.