This update resolves the "Erroneous VeriSign-Issued Digital Certificates Pose Spoofing Hazard" security vulnerability, and is discussed in Microsoft Security Bulletin MS01-017. Download now to prevent an unauthorized user from running code on your computer by digitally signing programs as "Microsoft Corporation."
VeriSign, Inc. issued two VeriSign digital certificates to an individual who fraudulently claimed to be a Microsoft employee; this allows the individual to sign programs, ActiveX® controls, Office macros, and other executable content as originating from "Microsoft Corporation." This update prevents the two erroneously signed certificates from being accepted as valid. Note This update was released prior to April 2, 2001.
For more information about this update, read Microsoft Security Bulletin MS01-017.