9 matches found
[SECURITY] Fedora 33 Update: roca-detect-1.2.12-15.fc33
This tool is related to the ACM CCS 2017 conference paper 124 Return of the Coppersmith=EF=BF=BD=EF=BF=BD=EF=BF=BDs Attack: Practical Factorization of Widely Used RSA Moduli. https://crocs.fi.muni.cz/public/papers/rsaccs17 Install this to test public RSA keys for the presence of the vulnerability...
Fedora: Security Advisory for roca-detect (FEDORA-2021-724c3aa51b)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
mangaseeonline.us Cross Site Scripting vulnerability OBB-1207280
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Microsoft Releases Security Advisory for Windows Hello for Business
Microsoft has released a Security Advisory to address an issue in Windows Hello for Business WHfB. An attacker could exploit this issue on devices that were affected by CVE-2017-15361, also known as Return of Coppersmith’s Attack ROCA, to take control of an affected system. The Cybersecurity and...
ROCA: Vulnerable RSA key pairs generation (CVE-2017-15361)
An old Infineon RSA library does not properly generate RSA key pairs, therefore enabling an attacker to potentially infer a private key from a public key...
CVE-2017-15361
creationtimestamp| type| source ---|---|--- 2017-10-17 10:59:44+00:00| exploited| https://t.me/informationsecuritychannel/10054 2017-10-17 15:08:08+00:00| exploited| https://t.me/informationsecuritychannel/10060 2018-03-21 13:35:17+00:00| published-proof-of-concept|...
CVE-2017-15361
The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module TPM firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 133.33, mishandles RSA key generation, which makes it easier for attackers to defeat various...
Infineon RSA library does not properly generate RSA key pairs
Overview The Infineon RSA library version 1.02.013 does not properly generate RSA key pairs, which may allow an attacker to recover the RSA private key corresponding to an RSA public key generated by this library. This vulnerability is often cited as "ROCA" in the media. Description...
KLA11850 Microsoft Advisory for Microsoft Device
This advisory addresses CVE-2017-15361. A security vulnerability exists in certain Trusted Platform Module TPM chipsets. The vulnerability weakens key strength. This is a firmware vulnerability, and not a vulnerability in the operating system or a specific application. Original advisories ADV1700...