Microsoft Windows could allow a remote attacker to conduct spoofing attacks, caused by disclosure of certain digital certificates. An attacker could exploit this vulnerability to provide fraudulent software that appears to be signed by a valid provider.