CVE-2006-5201
Severity Score
4.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.
MĂșltiples paquetes sobre Sun Solaris, incluyendo (1) NSS; (2) Java JDK and JRE 5.0 Update 8 y anteriores, SDK y JRE 1.4.x hasta 1.4.2_12, y SDK y JRE 1.3.x hasta 1.3.1_19; (3) JSSE 1.0.3_03 y anteriores; (4) IPSec/IKE; (5) Secure Global Desktop; y (6) StarOffice, cuando se usa una llave RSA con un exponente 3, elimina el relleno PKCS-1 antes de generar un hash, lo cual permite a un atacante remoto falsificar una firma PKCS #1 v1.5 que esta firmada por una llave RSA y evita que estos productos verifiquen correctamente X.509 y otros certificados que utilicen PKCS #1.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-10-09 CVE Reserved
- 2006-10-09 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-29 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/22226 | Third Party Advisory | |
| http://secunia.com/advisories/22325 | Third Party Advisory | |
| http://secunia.com/advisories/22992 | Third Party Advisory | |
| http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm | Third Party Advisory | |
| http://www.kb.cert.org/vuls/id/845620 | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/22204 | 2019-07-31 |
| URL | Date | SRC |
|---|---|---|
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1 | 2019-07-31 | |
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-102657-1 | 2019-07-31 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sun Search vendor "Sun" | Nss Search vendor "Sun" for product "Nss" | * | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Secure Global Desktop Search vendor "Sun" for product "Secure Global Desktop" | * | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Staroffice Search vendor "Sun" for product "Staroffice" | * | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Solaris Search vendor "Sun" for product "Solaris" | 9.0 Search vendor "Sun" for product "Solaris" and version "9.0" | sparc |
Affected
| ||||||
| Sun Search vendor "Sun" | Solaris Search vendor "Sun" for product "Solaris" | 10.0 Search vendor "Sun" for product "Solaris" and version "10.0" | sparc |
Affected
| ||||||
| Sun Search vendor "Sun" | Sunos Search vendor "Sun" for product "Sunos" | 5.8 Search vendor "Sun" for product "Sunos" and version "5.8" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update1 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update2 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update3 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update4 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update5 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update6 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update7 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update7_b03 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jdk Search vendor "Sun" for product "Jdk" | 1.5.0 Search vendor "Sun" for product "Jdk" and version "1.5.0" | update8 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1 Search vendor "Sun" for product "Jre" and version "1.3.1" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_2 Search vendor "Sun" for product "Jre" and version "1.3.1_2" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_03 Search vendor "Sun" for product "Jre" and version "1.3.1_03" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_04 Search vendor "Sun" for product "Jre" and version "1.3.1_04" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_05 Search vendor "Sun" for product "Jre" and version "1.3.1_05" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_06 Search vendor "Sun" for product "Jre" and version "1.3.1_06" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_07 Search vendor "Sun" for product "Jre" and version "1.3.1_07" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_08 Search vendor "Sun" for product "Jre" and version "1.3.1_08" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_09 Search vendor "Sun" for product "Jre" and version "1.3.1_09" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_10 Search vendor "Sun" for product "Jre" and version "1.3.1_10" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_11 Search vendor "Sun" for product "Jre" and version "1.3.1_11" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_12 Search vendor "Sun" for product "Jre" and version "1.3.1_12" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_13 Search vendor "Sun" for product "Jre" and version "1.3.1_13" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_14 Search vendor "Sun" for product "Jre" and version "1.3.1_14" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_15 Search vendor "Sun" for product "Jre" and version "1.3.1_15" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_16 Search vendor "Sun" for product "Jre" and version "1.3.1_16" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_17 Search vendor "Sun" for product "Jre" and version "1.3.1_17" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_18 Search vendor "Sun" for product "Jre" and version "1.3.1_18" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.3.1_19 Search vendor "Sun" for product "Jre" and version "1.3.1_19" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2 Search vendor "Sun" for product "Jre" and version "1.4.2" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_1 Search vendor "Sun" for product "Jre" and version "1.4.2_1" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_2 Search vendor "Sun" for product "Jre" and version "1.4.2_2" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_3 Search vendor "Sun" for product "Jre" and version "1.4.2_3" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_4 Search vendor "Sun" for product "Jre" and version "1.4.2_4" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_5 Search vendor "Sun" for product "Jre" and version "1.4.2_5" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_6 Search vendor "Sun" for product "Jre" and version "1.4.2_6" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_7 Search vendor "Sun" for product "Jre" and version "1.4.2_7" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_8 Search vendor "Sun" for product "Jre" and version "1.4.2_8" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_9 Search vendor "Sun" for product "Jre" and version "1.4.2_9" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_10 Search vendor "Sun" for product "Jre" and version "1.4.2_10" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_11 Search vendor "Sun" for product "Jre" and version "1.4.2_11" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.4.2_12 Search vendor "Sun" for product "Jre" and version "1.4.2_12" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update1 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update2 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update3 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update4 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update5 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update6 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update7 |
Affected
| ||||||
| Sun Search vendor "Sun" | Jre Search vendor "Sun" for product "Jre" | 1.5.0 Search vendor "Sun" for product "Jre" and version "1.5.0" | update8 |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1 Search vendor "Sun" for product "Sdk" and version "1.3.1" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_01 Search vendor "Sun" for product "Sdk" and version "1.3.1_01" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_01a Search vendor "Sun" for product "Sdk" and version "1.3.1_01a" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_02 Search vendor "Sun" for product "Sdk" and version "1.3.1_02" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_03 Search vendor "Sun" for product "Sdk" and version "1.3.1_03" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_04 Search vendor "Sun" for product "Sdk" and version "1.3.1_04" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_05 Search vendor "Sun" for product "Sdk" and version "1.3.1_05" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_06 Search vendor "Sun" for product "Sdk" and version "1.3.1_06" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_07 Search vendor "Sun" for product "Sdk" and version "1.3.1_07" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_08 Search vendor "Sun" for product "Sdk" and version "1.3.1_08" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_09 Search vendor "Sun" for product "Sdk" and version "1.3.1_09" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_10 Search vendor "Sun" for product "Sdk" and version "1.3.1_10" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_11 Search vendor "Sun" for product "Sdk" and version "1.3.1_11" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_12 Search vendor "Sun" for product "Sdk" and version "1.3.1_12" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_13 Search vendor "Sun" for product "Sdk" and version "1.3.1_13" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_14 Search vendor "Sun" for product "Sdk" and version "1.3.1_14" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_15 Search vendor "Sun" for product "Sdk" and version "1.3.1_15" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_16 Search vendor "Sun" for product "Sdk" and version "1.3.1_16" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_17 Search vendor "Sun" for product "Sdk" and version "1.3.1_17" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_18 Search vendor "Sun" for product "Sdk" and version "1.3.1_18" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.3.1_19 Search vendor "Sun" for product "Sdk" and version "1.3.1_19" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2 Search vendor "Sun" for product "Sdk" and version "1.4.2" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_1 Search vendor "Sun" for product "Sdk" and version "1.4.2_1" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_2 Search vendor "Sun" for product "Sdk" and version "1.4.2_2" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_3 Search vendor "Sun" for product "Sdk" and version "1.4.2_3" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_4 Search vendor "Sun" for product "Sdk" and version "1.4.2_4" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_5 Search vendor "Sun" for product "Sdk" and version "1.4.2_5" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_6 Search vendor "Sun" for product "Sdk" and version "1.4.2_6" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_7 Search vendor "Sun" for product "Sdk" and version "1.4.2_7" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_8 Search vendor "Sun" for product "Sdk" and version "1.4.2_8" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_9 Search vendor "Sun" for product "Sdk" and version "1.4.2_9" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_10 Search vendor "Sun" for product "Sdk" and version "1.4.2_10" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_11 Search vendor "Sun" for product "Sdk" and version "1.4.2_11" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Sdk Search vendor "Sun" for product "Sdk" | 1.4.2_12 Search vendor "Sun" for product "Sdk" and version "1.4.2_12" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jsse Search vendor "Sun" for product "Jsse" | 1.0.3 Search vendor "Sun" for product "Jsse" and version "1.0.3" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jsse Search vendor "Sun" for product "Jsse" | 1.0.3_01 Search vendor "Sun" for product "Jsse" and version "1.0.3_01" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jsse Search vendor "Sun" for product "Jsse" | 1.0.3_02 Search vendor "Sun" for product "Jsse" and version "1.0.3_02" | - |
Affected
| ||||||
| Sun Search vendor "Sun" | Jsse Search vendor "Sun" for product "Jsse" | 1.0.3_03 Search vendor "Sun" for product "Jsse" and version "1.0.3_03" | - |
Affected
| ||||||