Fortinet Discovers Microsoft Windows Installer Authenticode Signature Validation Bypass Vulnerability
Fortinet's FortiGuard Labs has discovered a vulnerability to bypass Windows Installer (MSI) Authenticode signature validation.
Windows Installer is a software component and application programming interface of Microsoft Windows used for the installation, maintenance, and removal of software.
A bypass vulnerability has been discovered in MSI Authenticode signature validation. The vulnerability exists due to the signature computation mechanism. It could allow an attacker to disguise an altered package as legitimate software.
Users should apply the solution provided by Microsoft.
Fortinet reported the vulnerability to Microsoft on April 23, 2021.
Microsoft confirmed the vulnerability on April 30, 2021.
Microsoft patched the vulnerability on July 13, 2021.