Microsoft KB Archive/166345

= Authenticode Security Increased in Internet Explorer =

Article ID: 166345

Article Last Modified on 1/19/2007

-

APPLIES TO


 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 4.01 128-Bit Edition
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 1.0
 * Microsoft Internet Explorer 2.0
 * Microsoft Internet Explorer 3.0
 * Microsoft Internet Explorer 3.01
 * Microsoft Internet Explorer 3.02
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 4.01 128-Bit Edition
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 3.2
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 2.0
 * Microsoft Internet Explorer 3.0
 * Microsoft Internet Explorer 3.01
 * Microsoft Internet Explorer 3.02
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 4.01 128-Bit Edition
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.5

-



This article was previously published under Q166345



SYMPTOMS
If you attempt to download a digitally signed self-extracting executable file in Internet Explorer, the following message may be displayed:

Internet Explorer 3.x:

A Windows application is attempting to open or install the following software component:

 from 

Please be aware that some files may contain viruses or otherwise harm your computer. This component has not been digitally "signed" by its publisher. Do you wish to continue?

Internet Explorer 4.x or 5:

Security Warning

Warning: The authenticity of this software can not be verified, therefore this software cannot be trusted.

Problem/s listed below:

Are you sure that you want to install and run distributed by ?



CAUSE
Microsoft has increased Authenticode security in Internet Explorer to ensure that all digitally signed self-extracting executable files are fully protected. Many signed files created using older versions of third- party tools such as Package For The Web from InstallShield or WinZip Self Extractor from Nico Mak Computing are now treated as unsigned files. When the safety level for active content is set to High or Medium, the message is displayed when you attempt to download these files.



RESOLUTION
To work around this problem, contact the administrator of the Web site that contains the self-extracting executable file to report the problem. Digitally signed files created using the most recent version of a third- party tool should not cause the message to be displayed.



MORE INFORMATION
The third-party products discussed in this article are manufactured by vendors independent of Microsoft; we make no warranty, implied or otherwise, regarding these products' performance or reliability.

Additional query words: 3.02 4.00 AXSDKCodeSign

Keywords: kbdownload kb3rdparty kbfaq kbcode kbusage KB166345

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.