Id confirm your results with tenable first then, if needed, you can report the vulnerability here.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Good morning,
I have been working to remediate this vulnerability by adding the proposed keys to two of my test servers, however, tenable continues to show that these servers are still vulnerable despite both registry keys being added and set to enable or disable.
To clarify, I have create a .reg file and imported them as is, enabled, and disabled and then rebooting the servers to no avail.
Is there an updated remediation for this as clearly the addition of the following keys does not resolve the issue?
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Wintrust\Config] "EnableCertPaddingCheck"="1"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Cryptography\Wintrust\Config] "EnableCertPaddingCheck"="1"
Thanks!
Id confirm your results with tenable first then, if needed, you can report the vulnerability here.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--