Vulnerability Note VU#724968

RSA key reconstruction vulnerability

Original Release date: 01 Aug 2007 | Last revised: 28 Aug 2007

Overview

Various implementations of RSA may contain a vulnerability that could allow an attacker to retrieve encryption keys.

Description

Some implementations of RSA may contain a vulnerability that could allow a local attacker to retrieve encryption keys.

OpenSSL is a widely used open source implementation of the SSL and TLS protocols. OpenSSL is based on the SSLeay library. OpenSSL provides support for the RSA encryption algorithm. Note that vendors may include a vulnerable version of OpenSSL in web servers, VPN, or other products.

Impact

An attacker could possibly decrypt messages that were encrypted with OpenSSL using RSA algorithm.

Solution

Apply a patch
OpenSSL has released a patch to address this issue. See http://openssl.org/news/patch-CVE-2007-3108.txt for more details. See the systems affected portion of this document for a partial list of other vendors who may be affected.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
OpenSSLAffected-02 Aug 2007
America Online, Inc.Unknown28 Jun 200728 Jun 2007
Apache-SSLUnknown28 Jun 200728 Jun 2007
Apache HTTP Server ProjectUnknown28 Jun 200728 Jun 2007
Apple Computer, Inc.Unknown01 Aug 200701 Aug 2007
Aruba Networks, Inc.Unknown28 Jun 200728 Jun 2007
AttachmateWRQ, Inc.Unknown28 Jun 200728 Jun 2007
CerticomUnknown28 Jun 200728 Jun 2007
Conectiva Inc.Unknown01 Aug 200701 Aug 2007
Covalent TechnologiesUnknown28 Jun 200728 Jun 2007
Cray Inc.Unknown01 Aug 200701 Aug 2007
CryptlibUnknown28 Jun 200702 Aug 2007
Crypto++ LibraryUnknown28 Jun 200728 Jun 2007
Debian GNU/LinuxUnknown01 Aug 200701 Aug 2007
EMC CorporationUnknown01 Aug 200701 Aug 2007
If you are a vendor and your product is affected, let us know.View More »

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

Thanks to Dr. Onur Aciicmez, Samsung Information Systems America, Samsung Electronics R&D Center, USA, and Prof. Werner Schindler, Bundesamt für Sicherheit in der Informationstechnik (BSI), Germany for reporting this vulnerability.

This document was written by Ryan Giobbi.

Other Information

  • CVE IDs: CVE-2007-3108
  • Date Public: 02 Aug 2007
  • Date First Published: 01 Aug 2007
  • Date Last Updated: 28 Aug 2007
  • Severity Metric: 1.77
  • Document Revision: 25

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.