pkcs software vulnerabilities
vulnerabilities.aspcode.net
Searching pkcs software vulnerabilities
The SSL and TLS components for OpenSSL 0.9.6i a
components
|
OpenSSL
|
earlier
|
096i
|
TLS
|
SSL
|
The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padding that cause OpenSSL to leak information regarding the relationship between ciphertext and the associated plaintext, aka the "Klima-Pokorny-Rosa attack."
FreeS/WAN 1.x and 2.x, and other related produc
superfreeswan
|
including
|
FreeS/WAN
|
openswan
|
products
|
related
|
before
|
other
|
FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before 2.1.4, and strongSwan before 2.1.3, allows remote attackers to authenticate using spoofed PKCS#7 certificates in which a self-signed certificate identifies an alternate Certificate Authority (CA) and spoofed issuer and subject.
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and
OpenSSL
|
before
|
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.
verify.c in GnuTLS before 1.4.4, when using an
verifyc
|
before
|
GnuTLS
|
verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.
Multiple packages on Sun Solaris, including (1)
including
|
packages
|
Multiple
|
Solaris
|
Sun
|
Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.
SSH Tectia Client/Server/Connector 5.1.0 and ea
Client/Server/Connector
|
Tectia
|
SSH
|
SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.
The libike library, as used by in.iked, elfsign
CVE-2006-4339
|
certificates
|
generating
|
verifying
|
correctly
|
attackers
|
signature
|
prevents
|
exponent
|
removes
|
elfsign
|
padding
|
library
|
Solaris
|
similar
|
iniked
|
remote
|
allows
|
PKCS-1
|
libike
|
signed
|
before
|
other
|
issue
|
which
|
using
|
forge
|
X509
|
used
|
kcfd
|
hash
|
PKCS
|
Sun
|
v15
|
key
|
RSA
|
use
|
The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.
Software vulnerabilities results 1 to 8 of 8
Page:
1