Microsoft Issues Security Update to Fix "Curveball" Vulnerability | TWiT Bits
Publisher |
Media Type |
Categories Via RSS |
Tech News
Publication Date |
Jan 22, 2020
Episode Duration |

TWiT Bits (Audio)

"CurveBall" is a spoofing vulnerability in the way the certificates are accepted without proper verification of the explicit curve parameters within the certificates. Essentially, this flaw allows an attacker to supply his own generated X.509 certificates by using an "explicit parameters" option to set those curve parameters.

Subscribe & watch the full Podcast:

Hosts: Leo Laporte and Steve Gibson

You can find more about TWiT and subscribe to our full shows at

This episode currently has no reviews.

Submit Review
This episode could use a review!

This episode could use a review! Have anything to say about it? Share your thoughts using the button below.

Submit Review