Lucene search

CiscoCISCO-SA-20060905-CVE-2007-5810

HistorySep 05, 2006 - 5:39 p.m.

OpenSSL RSA Signature Forgery Vulnerability

2006-09-0517:39:31

tools.cisco.com

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.093 Low

EPSS

Percentile

94.7%

JSON

OpenSSL versions 0.9.7j and prior and 0.9.8b and prior contain a vulnerability that could allow an unauthenticated, remote attacker to successfully pass a forged X.509 certificate.

The vulnerability could allow an unauthenticated, remote attacker to pass a forged Public-Key Cryptography Standards (PKCS)#1 Version 1.5 signature when signed by a certain type of RSA key. An attacker could exploit the vulnerability to access certificate-protected resources.

OpenSSL confirmed the vulnerability in a security advisory and released updated versions.

This vulnerability affects PKCS #1 v1.5 signatures if the exponent of the public key is 3, which is widely used by Certificate Authorities. An attacker will likely exploit this vulnerability to forge signatures without the secret key. PKCS #1 v1.5 is often utilized within X.509 certificates; therefore, all applications that use OpenSSL to verify X.509 certificates may be vulnerable, including software that uses OpenSSL for SSL or TLS.

Affected configurations

Vulners

Node

ciscoapplication_and_content_networking_system_softwareMatchany

ciscocontent_services_switchMatchany

ciscosecure_intrusion_detection_systemMatchany

ciscoprime_access_registrarMatchany

ciscogss_4480_global_site_selectorMatchany

ciscounified_sip_proxyMatchany

ciscociscoworks_common_servicesMatchany

ciscociscoworks_common_management_foundationMatchany

ciscomds_9000_san-osMatchany

ciscosecurity_agentMatchany

ciscocisco_ons_15454_system_softwareMatchany

ciscopix_asa_idsMatchany

ciscosecurity_monitoring_analysis_and_response_systemMatchany

ciscounified_presence_serverMatchany

ciscowide_area_application_servicesMatchany

ciscowireless_lan_controllerMatch4.0

ciscounified_communications_managerMatchany

ciscoapplication_and_content_networking_system_softwareMatchany

ciscocontent_services_switchMatchany

ciscosecure_intrusion_detection_systemMatchany

ciscoprime_access_registrarMatchany

ciscogss_4480_global_site_selectorMatchany

ciscounified_sip_proxyMatchany

ciscociscoworks_common_servicesMatchany

ciscociscoworks_common_management_foundationMatchany

ciscomds_9000_san-osMatchany

ciscosecurity_agentMatchany

ciscoonsMatch15454_system_software

ciscopix_asa_idsMatchany

ciscosecurity_monitoring_analysis_and_response_systemMatchany

ciscounified_presence_serverMatchany

ciscowide_area_application_servicesMatchany

ciscowireless_lan_controllerMatch4.0.196

ciscounified_communications_managerMatchany

CPENameOperatorVersion
cisco application and content networking system (acns) softwareeqany
cisco content services switch (css)eqany
cisco intrusion detection system (ids)eqany
cisco prime access registrareqany
cisco gss global site selectoreqany
cisco sip proxy servereqany
ciscoworks common services (cs)eqany
ciscoworks common management foundation (cmf)eqany
cisco mds san-os softwareeqany
cisco security agenteqany

Name	Operator	Version
cisco application and content networking system (acns) software	eq	any
cisco content services switch (css)	eq	any
cisco intrusion detection system (ids)	eq	any
cisco prime access registrar	eq	any
cisco gss global site selector	eq	any
cisco sip proxy server	eq	any
ciscoworks common services (cs)	eq	any
ciscoworks common management foundation (cmf)	eq	any
cisco mds san-os software	eq	any
cisco security agent	eq	any