Lucene search
K

17 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.3 views

SUSE CVE-2006-4340

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

4CVSS7.7AI score0.02145EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.2 views

SUSE CVE-2006-5462

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

6.4CVSS8.8AI score0.02633EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2020/09/25 12:0 a.m.5 views

Multiple packages on Sun Solaris including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier SDK and JRE 1.4.x up to 1.4.2_12 and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice when using an RSA key with exponent 3 removes PKCS-1 padding before generating a hash which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.

...

4CVSS7AI score0.03078EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2008/08/13 2:16 p.m.5 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS7AI score0.04894EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/06/30 3:36 p.m.4 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS7AI score0.04894EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/05/20 2:15 p.m.5 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS7AI score0.04894EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/02/07 7:57 p.m.3 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS6.8AI score0.04894EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/01/24 12:0 a.m.5 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS6.8AI score0.04894EPSS
Exploits1References4
OSV
OSV
added 2006/11/08 9:7 p.m.1 views

DEBIAN-CVE-2006-5462

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

6.4CVSS7AI score0.02633EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/11/08 9:45 a.m.3 views

security flaw

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

6.4CVSS6.2AI score0.02633EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/11/08 8:46 a.m.2 views

security flaw

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

6.4CVSS6.2AI score0.02633EPSS
Exploits0References4
OSV
OSV
added 2006/09/15 6:7 p.m.2 views

DEBIAN-CVE-2006-4340

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

4CVSS7.1AI score0.02145EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/09/15 6:49 a.m.3 views

security flaw

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

4CVSS6.9AI score0.02145EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/09/15 6:38 a.m.4 views

security flaw

Mozilla Network Security Service NSS library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatur...

4CVSS6.9AI score0.02145EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/09/14 2:6 p.m.7 views

security flaw

verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from...

5CVSS6.7AI score0.02427EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2006/09/14 12:0 a.m.3 views

PT-2006-1074

Name of the Vulnerable Software and Affected Versions: GnuTLS versions prior to 1.4.4 Description: The issue concerns a problem with handling excess data in the digestAlgorithm.parameters field when generating a hash using an RSA key with exponent 3. This can be exploited remotely, allowing...

10CVSS6.5AI score0.58969EPSS
Exploits9References47
RedHat Linux
RedHat Linux
added 2006/09/06 8:15 p.m.3 views

openssl signature forgery

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS 1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying...

4.3CVSS6.8AI score0.04894EPSS
Exploits1References4
Rows per page
Query Builder