CVE - CVE-2006-4339

CVE-ID
CVE-2006-4339	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20060905 rPSA-2006-0163-1 openssl openssl-scripts URL:http://www.securityfocus.com/archive/1/445231/100/0/threaded BUGTRAQ:20060912 ERRATA: [ GLSA 200609-05 ] OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery URL:http://www.securityfocus.com/archive/1/445822/100/0/threaded BUGTRAQ:20070110 VMware ESX server security updates URL:http://www.securityfocus.com/archive/1/456546/100/200/threaded BUGTRAQ:20080318 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues URL:http://www.securityfocus.com/archive/1/489739/100/0/threaded MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error URL:http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised] URL:http://marc.info/?l=bind-announce&m=116253119512445&w=2 MLIST:[security-announce] 20080317 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues URL:http://lists.vmware.com/pipermail/security-announce/2008/000008.html MISC:http://www.matasano.com/log/469/many-rsa-signatures-may-be-forgeable-in-openssl-and-elsewhere/ MISC:http://docs.info.apple.com/article.html?artnum=307177 CONFIRM:http://www.openssl.org/news/secadv_20060905.txt CONFIRM:https://issues.rpath.com/browse/RPL-616 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-188.htm CONFIRM:http://www.opera.com/support/search/supsearch.dml?index=845 CONFIRM:http://openvpn.net/changelog.html CONFIRM:http://www.serv-u.com/releasenotes/ CONFIRM:http://support.attachmate.com/techdocs/2137.html CONFIRM:http://www.bluecoat.com/support/knowledge/openSSL_RSA_Signature_forgery.html CONFIRM:http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3117 CONFIRM:http://www.arkoon.fr/upload/alertes/40AK-2006-04-FR-1.1_SSL360_OPENSSL_RSA.pdf CONFIRM:http://www.sybase.com/detail?id=1047991 CONFIRM:http://docs.info.apple.com/article.html?artnum=304829 CONFIRM:http://www.vmware.com/support/esx2/doc/esx-202-200612-patch.html CONFIRM:http://www.vmware.com/support/esx21/doc/esx-213-200612-patch.html CONFIRM:http://www.vmware.com/support/esx25/doc/esx-253-200612-patch.html CONFIRM:http://www.vmware.com/support/esx25/doc/esx-254-200612-patch.html CONFIRM:http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html CONFIRM:http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2007-101493.html CONFIRM:http://support.attachmate.com/techdocs/2127.html CONFIRM:http://support.attachmate.com/techdocs/2128.html CONFIRM:https://secure-support.novell.com/KanisaPlatform/Publishing/41/3143224_f.SAL_Public.html CONFIRM:https://issues.rpath.com/browse/RPL-1633 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2008-0005.html CONFIRM:http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html CONFIRM:http://www.vmware.com/support/player/doc/releasenotes_player.html CONFIRM:http://www.vmware.com/support/player2/doc/releasenotes_player2.html CONFIRM:http://www.vmware.com/support/server/doc/releasenotes_server.html CONFIRM:http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html CONFIRM:http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html CONFIRM:http://www.openoffice.org/security/cves/CVE-2006-4339.html APPLE:APPLE-SA-2006-11-28 URL:http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html APPLE:APPLE-SA-2007-12-14 URL:http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html BEA:BEA07-169.00 URL:http://dev2dev.bea.com/pub/advisory/238 CISCO:20061108 Multiple Vulnerabilities in OpenSSL library URL:http://www.cisco.com/warp/public/707/cisco-sr-20061108-openssl.shtml CISCO:20061108 Multiple Vulnerabilities in OpenSSL Library URL:http://www.cisco.com/en/US/products/hw/contnetw/ps4162/tsd_products_security_response09186a008077af1b.html DEBIAN:DSA-1173 URL:http://www.us.debian.org/security/2006/dsa-1173 DEBIAN:DSA-1174 URL:http://www.debian.org/security/2006/dsa-1174 FREEBSD:FreeBSD-SA-06:19 URL:http://security.freebsd.org/advisories/FreeBSD-SA-06:19.openssl.asc GENTOO:GLSA-200609-05 URL:http://security.gentoo.org/glsa/glsa-200609-05.xml GENTOO:GLSA-200609-18 URL:http://security.gentoo.org/glsa/glsa-200609-18.xml GENTOO:GLSA-200610-06 URL:http://www.gentoo.org/security/en/glsa/glsa-200610-06.xml GENTOO:GLSA-201408-19 URL:http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml HP:HPSBUX02165 URL:http://www.securityfocus.com/archive/1/450327/100/0/threaded HP:SSRT061266 URL:http://www.securityfocus.com/archive/1/450327/100/0/threaded HP:HPSBUX02153 URL:http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742 HP:SSRT061181 URL:http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742 HP:HPSBUX02186 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540 HP:SSRT071299 URL:http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540 HP:HPSBTU02207 URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144 HP:SSRT061213 URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144 HP:SSRT061239 URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144 HP:SSRT071304 URL:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144 HP:HPSBUX02219 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495 HP:SSRT061273 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495 HP:HPSBMA02250 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118771 HP:SSRT061275 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118771 HP:HPSBOV02683 URL:http://marc.info/?l=bugtraq&m=130497311408250&w=2 HP:SSRT090208 URL:http://marc.info/?l=bugtraq&m=130497311408250&w=2 MANDRIVA:MDKSA-2006:161 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:161 MANDRIVA:MDKSA-2006:177 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:177 MANDRIVA:MDKSA-2006:178 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:178 MANDRIVA:MDKSA-2006:207 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:207 OPENBSD:[3.9] 20060908 011: SECURITY FIX: September 8, 2006 URL:http://www.openbsd.org/errata.html OPENPKG:OpenPKG-SA-2006.029 URL:http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.029-bind.html OPENPKG:OpenPKG-SA-2006.018 URL:http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.018.html REDHAT:RHSA-2006:0661 URL:http://www.redhat.com/support/errata/RHSA-2006-0661.html REDHAT:RHSA-2007:0062 URL:http://www.redhat.com/support/errata/RHSA-2007-0062.html REDHAT:RHSA-2007:0072 URL:http://www.redhat.com/support/errata/RHSA-2007-0072.html REDHAT:RHSA-2007:0073 URL:http://www.redhat.com/support/errata/RHSA-2007-0073.html REDHAT:RHSA-2008:0629 URL:http://www.redhat.com/support/errata/RHSA-2008-0629.html SGI:20060901-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc SLACKWARE:SSA:2006-257-02 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.605306 SLACKWARE:SSA:2006-310-01 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.566955 SUNALERT:102648 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1 SUNALERT:102657 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102657-1 SUNALERT:102656 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102656-1 SUNALERT:102696 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102696-1 SUNALERT:102686 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102686-1 SUNALERT:102722 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102722-1 SUNALERT:102744 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102744-1 SUNALERT:102759 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102759-1 SUNALERT:201247 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-201247-1 SUNALERT:201534 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-201534-1 SUNALERT:200708 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-200708-1 SUNALERT:1000148 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000148.1-1 SUSE:SUSE-SA:2006:055 URL:http://www.novell.com/linux/security/advisories/2006_55_ssl.html SUSE:SUSE-SA:2006:061 URL:http://www.novell.com/linux/security/advisories/2006_61_opera.html SUSE:SUSE-SR:2006:026 URL:http://www.novell.com/linux/security/advisories/2006_26_sr.html SUSE:SUSE-SA:2007:010 URL:http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html CERT:TA06-333A URL:http://www.us-cert.gov/cas/techalerts/TA06-333A.html CERT-VN:VU#845620 URL:http://www.kb.cert.org/vuls/id/845620 JVN:JVN#51615542 URL:http://jvn.jp/en/jp/JVN51615542/index.html JVNDB:JVNDB-2012-000079 URL:http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000079.html BID:19849 URL:http://www.securityfocus.com/bid/19849 BID:22083 URL:http://www.securityfocus.com/bid/22083 BID:28276 URL:http://www.securityfocus.com/bid/28276 OVAL:oval:org.mitre.oval:def:11656 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11656 SECUNIA:38567 URL:http://secunia.com/advisories/38567 SECUNIA:38568 URL:http://secunia.com/advisories/38568 SECUNIA:60799 URL:http://secunia.com/advisories/60799 SECUNIA:41818 URL:http://secunia.com/advisories/41818 VUPEN:ADV-2006-3453 URL:http://www.vupen.com/english/advisories/2006/3453 VUPEN:ADV-2006-3566 URL:http://www.vupen.com/english/advisories/2006/3566 VUPEN:ADV-2006-3730 URL:http://www.vupen.com/english/advisories/2006/3730 VUPEN:ADV-2006-3793 URL:http://www.vupen.com/english/advisories/2006/3793 VUPEN:ADV-2006-3899 URL:http://www.vupen.com/english/advisories/2006/3899 VUPEN:ADV-2006-3936 URL:http://www.vupen.com/english/advisories/2006/3936 VUPEN:ADV-2006-4205 URL:http://www.vupen.com/english/advisories/2006/4205 VUPEN:ADV-2006-4206 URL:http://www.vupen.com/english/advisories/2006/4206 VUPEN:ADV-2006-4207 URL:http://www.vupen.com/english/advisories/2006/4207 VUPEN:ADV-2006-4327 URL:http://www.vupen.com/english/advisories/2006/4327 VUPEN:ADV-2006-4329 URL:http://www.vupen.com/english/advisories/2006/4329 VUPEN:ADV-2006-4366 URL:http://www.vupen.com/english/advisories/2006/4366 VUPEN:ADV-2006-4417 URL:http://www.vupen.com/english/advisories/2006/4417 VUPEN:ADV-2006-4586 URL:http://www.vupen.com/english/advisories/2006/4586 VUPEN:ADV-2006-4750 URL:http://www.vupen.com/english/advisories/2006/4750 VUPEN:ADV-2006-4744 URL:http://www.vupen.com/english/advisories/2006/4744 VUPEN:ADV-2006-5146 URL:http://www.vupen.com/english/advisories/2006/5146 VUPEN:ADV-2007-0254 URL:http://www.vupen.com/english/advisories/2007/0254 VUPEN:ADV-2007-0343 URL:http://www.vupen.com/english/advisories/2007/0343 VUPEN:ADV-2006-4216 URL:http://www.vupen.com/english/advisories/2006/4216 VUPEN:ADV-2007-1401 URL:http://www.vupen.com/english/advisories/2007/1401 VUPEN:ADV-2007-1815 URL:http://www.vupen.com/english/advisories/2007/1815 VUPEN:ADV-2007-1945 URL:http://www.vupen.com/english/advisories/2007/1945 VUPEN:ADV-2007-2163 URL:http://www.vupen.com/english/advisories/2007/2163 VUPEN:ADV-2006-3748 URL:http://www.vupen.com/english/advisories/2006/3748 VUPEN:ADV-2007-2315 URL:http://www.vupen.com/english/advisories/2007/2315 VUPEN:ADV-2007-2783 URL:http://www.vupen.com/english/advisories/2007/2783 VUPEN:ADV-2007-4224 URL:http://www.vupen.com/english/advisories/2007/4224 VUPEN:ADV-2008-0905 URL:http://www.vupen.com/english/advisories/2008/0905/references OSVDB:28549 URL:http://www.osvdb.org/28549 SECTRACK:1016791 URL:http://securitytracker.com/id?1016791 SECTRACK:1017522 URL:http://securitytracker.com/id?1017522 SECUNIA:21709 URL:http://secunia.com/advisories/21709 UBUNTU:USN-339-1 URL:http://www.ubuntu.com/usn/usn-339-1 SECUNIA:21778 URL:http://secunia.com/advisories/21778 SECUNIA:21785 URL:http://secunia.com/advisories/21785 SECUNIA:21812 URL:http://secunia.com/advisories/21812 SECUNIA:21823 URL:http://secunia.com/advisories/21823 SECUNIA:21852 URL:http://secunia.com/advisories/21852 SECUNIA:21791 URL:http://secunia.com/advisories/21791 SECUNIA:21767 URL:http://secunia.com/advisories/21767 SECUNIA:21776 URL:http://secunia.com/advisories/21776 SECUNIA:21873 URL:http://secunia.com/advisories/21873 SECUNIA:21906 URL:http://secunia.com/advisories/21906 SECUNIA:21846 URL:http://secunia.com/advisories/21846 SECUNIA:21927 URL:http://secunia.com/advisories/21927 SECUNIA:21870 URL:http://secunia.com/advisories/21870 SECUNIA:22036 URL:http://secunia.com/advisories/22036 SECUNIA:21982 URL:http://secunia.com/advisories/21982 SECUNIA:21930 URL:http://secunia.com/advisories/21930 SECUNIA:22161 URL:http://secunia.com/advisories/22161 SECUNIA:22259 URL:http://secunia.com/advisories/22259 SECUNIA:22260 URL:http://secunia.com/advisories/22260 SECUNIA:22226 URL:http://secunia.com/advisories/22226 SECUNIA:22232 URL:http://secunia.com/advisories/22232 SECUNIA:22284 URL:http://secunia.com/advisories/22284 SECUNIA:22325 URL:http://secunia.com/advisories/22325 SECUNIA:22446 URL:http://secunia.com/advisories/22446 SECUNIA:22509 URL:http://secunia.com/advisories/22509 SECUNIA:22513 URL:http://secunia.com/advisories/22513 SECUNIA:22523 URL:http://secunia.com/advisories/22523 SECUNIA:22545 URL:http://secunia.com/advisories/22545 SECUNIA:22585 URL:http://secunia.com/advisories/22585 SECUNIA:22733 URL:http://secunia.com/advisories/22733 SECUNIA:22671 URL:http://secunia.com/advisories/22671 SECUNIA:22689 URL:http://secunia.com/advisories/22689 SECUNIA:22758 URL:http://secunia.com/advisories/22758 SECUNIA:22799 URL:http://secunia.com/advisories/22799 SECUNIA:22711 URL:http://secunia.com/advisories/22711 SECUNIA:22934 URL:http://secunia.com/advisories/22934 SECUNIA:22936 URL:http://secunia.com/advisories/22936 SECUNIA:22937 URL:http://secunia.com/advisories/22937 SECUNIA:22938 URL:http://secunia.com/advisories/22938 SECUNIA:22939 URL:http://secunia.com/advisories/22939 SECUNIA:22940 URL:http://secunia.com/advisories/22940 SECUNIA:22949 URL:http://secunia.com/advisories/22949 SECUNIA:22948 URL:http://secunia.com/advisories/22948 SECUNIA:23155 URL:http://secunia.com/advisories/23155 SECUNIA:23455 URL:http://secunia.com/advisories/23455 SECUNIA:23680 URL:http://secunia.com/advisories/23680 SECUNIA:23794 URL:http://secunia.com/advisories/23794 SECUNIA:23841 URL:http://secunia.com/advisories/23841 SECUNIA:23915 URL:http://secunia.com/advisories/23915 SECUNIA:22044 URL:http://secunia.com/advisories/22044 SECUNIA:22932 URL:http://secunia.com/advisories/22932 SECUNIA:24099 URL:http://secunia.com/advisories/24099 SECUNIA:24950 URL:http://secunia.com/advisories/24950 SECUNIA:24930 URL:http://secunia.com/advisories/24930 SECUNIA:25284 URL:http://secunia.com/advisories/25284 SECUNIA:25399 URL:http://secunia.com/advisories/25399 SECUNIA:25649 URL:http://secunia.com/advisories/25649 SECUNIA:22066 URL:http://secunia.com/advisories/22066 SECUNIA:26329 URL:http://secunia.com/advisories/26329 SECUNIA:26893 URL:http://secunia.com/advisories/26893 SECUNIA:28115 URL:http://secunia.com/advisories/28115 SECUNIA:31492 URL:http://secunia.com/advisories/31492 VUPEN:ADV-2010-0366 URL:http://www.vupen.com/english/advisories/2010/0366 XF:openssl-rsa-security-bypass(28755) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/28755
Assigning CNA
N/A
Date Entry Created
20060824	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060824)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org