The subordinate CA issued 22 certificates with weak 512 bit keys. The subordinate CA has also issued certificates without the appropriate usage extensions or revocation information. to a Windows kernel issue related to the Duqu malware, a trojan that injects malicious code into other processes.
If you do not have automatic updating enabled, the update is available by checking for updates or can be downloaded from KB Article 2641690.
- MSRC: Untrusted Certificate Store to be updated
- MSRC: Microsoft releases Security Advisory 2639658
- Tech Net Advisory: Microsoft Security Advisory (2641690) Fraudulent Digital Certificates Could Allow Spoofing
- Knowledge Base Article: Microsoft Security Advisory: Fraudulent digital certificates could allow spoofing