Computer World - Microsoft Tuesday released the first security update for Windows 7 Phone, replicating the smart-phone users a piece of the company gave the Windows desktop users six weeks ago.
Microsoft has begun to deploy a security update to Windows 7 Phone Handset
When the update will actually reach users is unclear.
.
At the time of release, the update is not available for all Windows 7 Phone customers, said Microsoft in a security advisory.
The so-called 7392 update - the move to OS version 7.0.7392.0 - fixes nine fake third-party digital certificates, the company said in a blog mail on Tuesday
Instead, customers will get a warning on the device when the update is available for their phone.
.
Tuesday's update is designed to blacklist nine digital certificates acquired by a hacker in March from Comodo, one of many companies that issue SSL (Secure Socket Layer) certificate.
It provides no additional functionality to Microsoft's mobile operating system
This patch moves the relevant certificates to \trusted publishers'CA Windows phone, which helps to insure that these false certificates are not inadvertently used, Microsoft said in a statement on its Windows phone update history Web page.
.
On 23 March, Microsoft updated Windows XP, Server 2003, Vista, 2008 Server, Windows 7 and Server 2008 R2 to add the stolen certificates in each operating system's blacklist.
How do you get 7392 depends on your mobile operator and which updates you have installed, read the post
Google and Mozilla have updated their Chrome and Firefox browsers in the past.
.
Microsoft did not respond to questions Tuesday, including why the Windows 7 Phone update was released six weeks after the Windows Desktop Update.
Customers with Deutsche Telekom and Optus, for example, will be in March 7392 and update together
In a blog post, said a Microsoft executive that the update would not reach all the Windows 7 Phone users immediately.
.
How do you get 7392 will depend on your mobile operator and which updates you have installed, said Eric Hautala, general manager of Windows 7 Phone their customer experience engineering team, in a May 3 blog.
If you have already installed the update in March, you will receive 7392 as a standalone download or with a future service
Customers with Deutsche Telekom and Optus, for example, will have 7392 and March update together ...
.
[But] if you have already installed the update in March, you will receive 7392 as a standalone download or with a future update.
The fake certificates were detailed in a Microsoft Security Advisory at the end of March
When a smart phone will receive the update, it shows OS version: 7.0.7392.0 in the device's screen.
.
According to Microsoft's schedule, all U.S.
Questions, but later withdrawn by the certification authority Comodo, they were present in all supported versions of Windows, Windows Mobile 6.x, Windows Phone 7, Kin and Zune devices
users of Windows 7 Phone-powered smart phones already received March update - called NoDo of the company - or are about to receive this update, making it uncertain when they would get the certificate-related update.
.
More HTC and LG smart phone owners reported a range of Windows 7 Phone fora on Tuesday that they had received the update, however.
They affect these web properties: login.live.com, mail.google.com, www.google.com, login.yahoo.com, login.skype.com, addons.mozilla.org and \Global Administrator \\ u0026 # 39;
But some who had used an unauthorised tool last month to update NoDo said they were not able to install yesterday's patch.
.
After the developer Chris Walsh tool launched in early April - before Microsoft and asked him to take it - Hautala had claimed that users can not receive future updates, or other problems can occur if they used Walsh software.
Walsh reported Tuesday that he had successfully extracted and installed the security update on three different phones that he had previously walshed - the nickname others have given to the process of grabbing the early updates by using their tools - but asked others to share their experiences.
More blacks, said they had received error code 81080005 after the updated were not installed.
To install the security update, users must connect their smartphone to a PC or Mac.
Gregg Keizer covers Microsoft, security, Apple, browsers, technology and general breaking news to Computer World.
Follow Greg on Twitter at @ gkeizer or subscribe to Gregg RSS feed.
His email address is gkeizer@computerworld.com.
Read more about Security in Computer World's Security Topic Center.
No comments:
Post a Comment