RSA key reconstruction vulnerability

2007-08-01T00:00:00
ID VU:724968
Type cert
Reporter CERT
Modified 2007-08-28T00:00:00

Description

Overview

Various implementations of RSA may contain a vulnerability that could allow an attacker to retrieve encryption keys.

Description

Some implementations of RSA may contain a vulnerability that could allow a local attacker to retrieve encryption keys.

OpenSSL is a widely used open source implementation of the SSL and TLS protocols. OpenSSL is based on the SSLeay library. OpenSSL provides support for the RSA encryption algorithm. Note that vendors may include a vulnerable version of OpenSSL in web servers, VPN, or other products.


Impact

An attacker could possibly decrypt messages that were encrypted with OpenSSL using RSA algorithm.


Solution

Apply a patch
OpenSSL has released a patch to address this issue. See <http://openssl.org/news/patch-CVE-2007-3108.txt> for more details. See the systems affected portion of this document for a partial list of other vendors who may be affected.


Systems Affected

Vendor| Status| Date Notified| Date Updated
---|---|---|---
OpenSSL| | -| 02 Aug 2007
America Online, Inc.| | 28 Jun 2007| 28 Jun 2007
Apache-SSL| | 28 Jun 2007| 28 Jun 2007
Apache HTTP Server Project| | 28 Jun 2007| 28 Jun 2007
Apple Computer, Inc.| | 01 Aug 2007| 01 Aug 2007
Aruba Networks, Inc.| | 28 Jun 2007| 28 Jun 2007
AttachmateWRQ, Inc.| | 28 Jun 2007| 28 Jun 2007
Certicom| | 28 Jun 2007| 28 Jun 2007
Conectiva Inc.| | 01 Aug 2007| 01 Aug 2007
Covalent Technologies| | 28 Jun 2007| 28 Jun 2007
Cray Inc.| | 01 Aug 2007| 01 Aug 2007
Cryptlib| | 28 Jun 2007| 02 Aug 2007
Crypto++ Library| | 28 Jun 2007| 28 Jun 2007
Debian GNU/Linux| | 01 Aug 2007| 01 Aug 2007
EMC Corporation| | 01 Aug 2007| 01 Aug 2007
If you are a vendor and your product is affected, let us know.

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A

References

  • <http://openssl.org/news/patch-CVE-2007-3108.txt>
  • <http://cvs.openssl.org/chngview?cn=16275>
  • <http://www.openssl.org/docs/apps/rsa.html#>
  • <http://en.wikipedia.org/wiki/Rsa>

Credit

Thanks to Dr. Onur Aciicmez, Samsung Information Systems America, Samsung Electronics R&D Center, USA, and Prof. Werner Schindler, Bundesamt für Sicherheit in der Informationstechnik (BSI), Germany for reporting this vulnerability.

This document was written by Ryan Giobbi.

Other Information

  • CVE IDs: CVE-2007-3108
  • Date Public: 02 Aug 2007
  • Date First Published: 01 Aug 2007
  • Date Last Updated: 28 Aug 2007
  • Severity Metric: 1.77
  • Document Revision: 25