Our company has a code sign certificate which is created by Verisign, we use it in a EXE file. But now this certificate is revoked from Verisign and I assume that the EXE file cannot be run on the client machine (Win7) now. Unfortunately, I still can run the EXE file which is signed by the revoked certificate. I've tried many ways, e.g.: certutil -urlcache * delete, but it's still not working. On the other hand, when i review the certificate in the EXE file, the "revocation status" of this certificate is still shown as "OK". However, this certificate is really shown as revoked in certutil tool. What should i do now to prevent client machine open the EXE file which contains revoked certificate?
Thanks,
Michael