12 matches found
CVE-2016-8671
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887...
CVE-2016-8671
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887...
CVE-2016-6885
The pstmexptmod function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service invalid free and crash via a base zero value for the modular exponentiation...
Design/Logic Flaw
The pstmexptmod function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service invalid free and crash via a base zero value for the modular exponentiation...
Code injection
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887...
CVE-2016-6887
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack...
CVE-2016-6887
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack...
Code injection
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack...
CVE-2016-8671
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887...
CVE-2016-8671
The pstmexptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887...
CVE-2016-8671
The CVE-2016-8671 issue affects MatrixSSL 3.8.6 and earlier, where the modular exponentiation in pstm_exptmod is not performed correctly. This vulnerability could allow remote attackers to predict the secret key via certain vectors, stemming from an incomplete fix for CVE-2016-6887. Public source...
CVE-2016-6887
Summary: CVE-2016-6887 affects MatrixSSL 3.8.6 and earlier, where the pstm_exptmod function mishandles modular exponentiation, enabling potential key prediction via a CRT attack. The related OpenVAS entry indicates a vulnerability class for MatrixSSL