Security: OpenSSL Vulnerable to Forged Signatures
OpenSSL is an open source implementation of the SSL and TLS protocols.
Daniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. If an RSA key with exponent 3 is used it may be possible to forge a PKCS #1 v1.5 signature signed by that key. Implementations may incorrectly verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature.
Since there are CAs using exponent 3 in wide use, and PKCS #1 v1.5 is used in X.509 certificates, all software that uses OpenSSL to verify X.509 certificates is potentially vulnerable, as well as any other use of PKCS #1 v1.5. This includes software that uses OpenSSL for SSL or TLS.
NOTE: OpenSSL versions up to 0.9.7j and 0.9.8b are affected.
=> More about the signature forgery technique
E-mail this to a Friend
Printable Version
You may also be interested in other helpful articles:
- Impact of the Debian OpenSSL Vulnerability On other Linux Distribution
- Security Warning: Serious flaw in Debian Linux OpenSSL Package
- Ubuntu Linux Critical OpenSSL and Ruby Vulnerabilities Fix Released
- Security: NVIDIA Graphics Driver Blob Root Exploit found
- How to: digitally sign OpenOffice.org documents
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Recent Comments
Today ~ 12 Comments
Today ~ 8 Comments
Today ~ 185 Comments
Today ~ 15 Comments
Today ~ 3 Comments