Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14292
HistorySep 15, 2006 - 12:00 a.m.

SIP over TLS: X.509 peer authentication vulnerability in Ingate products

2006-09-1500:00:00
vulners.com
8
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SIP over TLS: X.509 peer authentication vulnerability in Ingate products

Product: Ingate Firewall and Ingate SIParator
Versions: all current versions
Tracking ID: 2829

Summary

The OpenSSL project has released an advisory titled "RSA Signature
Forgery (CVE-2006-4339)". This advisory possibly affects some
installations of Ingate Firewall and Ingate SIParator.

To be affected, you have to use an external CA and SIP over TLS. See
below for details.

The IPsec implementation is not affected by this issue.

Impact

It may be possible for an attacker to connect using SIP over TLS even
if an X.509 client certificate is required. It may be possible for an
attacker to intercept connections to TLS-secured servers that the
Ingate product initiates.

Affected versions

All current versions of Ingate Firewall and Ingate SIParator are
affected.

Details

The vulnerability is only exploitable if an X.509 certificate uses an
RSA key with exponent 3. The Ingate product never creates such keys
by itself, but if an external CA is used, and if that CA uses exponent
3, the configuration may be vulnerable. Most CAs uses exponent 65537,
and certificates issued by them are not vulnerable.

SIP installations are vulnerable if any of the certificates in the
"TLS CA Certificates" table on the "Signaling Encryption" tab uses
exponent 3.

How to determine if an X.509 certificate uses exponent 3

If you have the OpenSSL package installed, you can examine a
certificate with a command such as this (assuming that the X.509
certificate is stored in PEM format in the file named "cert.cer").

openssl x509 -inform pem -in cert.cer -text

Among the lines printed, there will be a line such as:

            Exponent: 65537 (0x10001)

If it says 3 instead of 65537 the certificate is vulnerable.

Workarounds

Switch to a CA that don't use exponent 3. If that is not possible,
turn off the SIP module.

Fix

Since Ingate believes that few of our customers use an external CA
that uses exponent 3, we plan to resolve this issue in the next
regular release. Contact <[email protected]> to obtain a patch that
fixes this problem if you are affected.

Background

The OpenSSL advisory is available here:

http://www.openssl.org/news/secadv_20060905.txt

Further questions regarding this issue can be directed to
[email protected].
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFFCRhgTl5zjNKUYI4RAncPAJ0YvMYY9M9elI7Wtt5djt0ZzUg2TQCeKBe8
Gro5v7fwPMRlCU4Kxzj+M7A=
=iTB4
-----END PGP SIGNATURE-----

Related

checkpoint_advisories 1
securityvulns 2
f5 2
nessus 82
freebsd_advisory 1
openvas 69
slackware 2
debian 2
ubuntu 1
altlinux 3
jvn 1
cve 5
centos 2
openssl 1
debiancve 2
gentoo 2
osv 1
checkpoint_security 1
freebsd 3
cert 1
ubuntucve 3
redhat 4
suse 3
mozilla 1
cisco 1
oraclelinux 2
threatpost 1
checkpoint_advisories
checkpoint_advisories
Update Protection against OpenSSL RSA Key Signature Forgery Vulnerability
2006-11-13 00:00:00
securityvulns
securityvulns
OpenSSL Security Advisory [5th September 2006] RSA Signature Forgery &#40;CVE-2006-4339&#41;
2006-09-05 00:00:00
[OpenPKG-SA-2006.029] OpenPKG Security Advisory &#40;bind&#41;
2006-11-05 00:00:00
f5
f5
SOL6623 - OpenSSL signature vulnerability - CVE-2006-4339
2007-05-16 00:00:00
K6623 : OpenSSL signature vulnerability - CVE-2006-4339
2013-03-26 00:00:00
nessus
nessus
HP-UX PHSS_35481 : HP-UX VirtualVault Remote Unauthorized Access (HPSBUX02165 SSRT061266 rev.1)
2006-11-22 00:00:00
GLSA-200609-05 : OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery
2006-09-12 00:00:00
Slackware 10.0 / 10.1 / 10.2 / 8.1 / 9.0 / 9.1 / current : openssl (SSA:2006-257-02)
2006-09-15 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-06:19.openssl
2006-09-06 00:00:00
openvas
openvas
SLES9: Security update for openssl
2009-10-10 00:00:00
Debian Security Advisory DSA 1174-1 (openssl096)
2008-01-17 00:00:00
Slackware Advisory SSA:2006-257-02 openssl
2012-09-11 00:00:00
slackware
slackware
[slackware-security] openssl
2006-09-14 22:05:20
[slackware-security] bind
2006-11-07 06:26:27
debian
debian
[SECURITY] [DSA 1173-1] New openssl packages fix RSA signature forgery cryptographic weakness
2006-09-10 12:25:00
[SECURITY] [DSA 1174-1] New openssl096 packages fix RSA signature forgery cryptographic weakness
2006-09-11 17:07:45
ubuntu
ubuntu
OpenSSL vulnerability
2006-09-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 0.9.7g-alt4
2006-09-06 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 0.9.7g-alt4
2006-09-06 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.7g-alt4
2006-09-06 00:00:00
jvn
jvn
JVN#51615542: Adobe Reader fails to properly handle signatures
2012-08-30 00:00:00
cve
cve
CVE-2006-4339
2006-09-05 17:04:00
CVE-2006-4790
2006-09-14 19:07:00
CVE-2006-5484
2006-10-24 22:07:00
centos
centos
openssl, openssl095a, openssl096 security update
2006-09-11 00:52:04
openssl, openssl096b security update
2006-09-08 09:58:00
openssl
openssl
Vulnerability in OpenSSL CVE-2006-4339
2006-09-05 00:00:00
debiancve
debiancve
CVE-2006-4339
2006-09-05 17:04:00
CVE-2006-4340
2006-09-15 18:07:00
gentoo
gentoo
OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery
2006-09-07 00:00:00
Mozilla Network Security Service (NSS): RSA signature forgery
2006-10-17 00:00:00
osv
osv
openssl - cryptographic weakness
2006-09-10 00:00:00
checkpoint_security
checkpoint_security
OpenSSL CVE-2006-4339 8732 vulnerability Fix
2006-10-18 22:00:00
freebsd
freebsd
openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)
2006-09-06 00:00:00
opera -- RSA Signature Forgery
2006-09-18 00:00:00
openoffice.org -- multiple vulnerabilities
2006-08-24 00:00:00
cert
cert
Multiple RSA implementations fail to properly handle signatures
2006-09-11 00:00:00
ubuntucve
ubuntucve
CVE-2006-4339
2006-09-05 00:00:00
CVE-2006-4790
2006-09-14 00:00:00
CVE-2006-4340
2006-09-15 00:00:00
redhat
redhat
(RHSA-2006:0661) openssl security update
2006-09-06 00:00:00
(RHSA-2007:0062) Critical: java-1.4.2-ibm security update
2007-02-07 00:00:00
(RHSA-2007:0073) Critical: java-1.5.0-ibm security update
2007-02-09 00:00:00
suse
suse
remote code execution in opera
2006-10-19 13:18:21
RSA signature evasion in openssl,mozilla-nss
2006-09-22 15:25:59
remote code execution in IBMJava2
2007-01-18 16:13:31
mozilla
mozilla
RSA Signature Forgery — Mozilla
2006-09-14 00:00:00
cisco
cisco
OpenSSL RSA Signature Forgery Vulnerability
2006-09-05 17:39:31
oraclelinux
oraclelinux
Important openssl security update
2006-11-30 00:00:00
Important openssl security update
2006-11-30 00:00:00
threatpost
threatpost
OpenOffice Zaps Six Security Bugs
2010-02-18 15:09:26
JSON
Related for SECURITYVULNS:DOC:14292
checkpoint_advisories1securityvulns2f52nessus82freebsd_advisory1openvas69slackware2debian2ubuntu1altlinux3jvn1cve5centos2openssl1debiancve2gentoo2osv1checkpoint_security1freebsd3cert1ubuntucve3redhat4suse3mozilla1cisco1oraclelinux2threatpost1