CVE-2007-3108
openssl: RSA side-channel attack
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.
La función BN_from_montgomery en el crypto/bn/bn_mont.c del OpenSSL 0.9.8e y anteriores, no interpreta adecuadamente la multiplicación Montgomery, lo que permite a usuarios locales llevar a cabo ataques por canal colateral (side-channel) y recuperar claves privadas RSA.
A flaw in how OpenSSL performed Montgomery multiplications was discovered %that could allow a local attacker to reconstruct RSA private keys by examining another user's OpenSSL processes. Moritz Jodeit found that OpenSSL's SSL_get_shared_ciphers() function did not correctly check the size of the buffer it was writing to. As a result, a remote attacker could exploit this to write one NULL byte past the end of the application's cipher list buffer, which could possibly lead to a denial of service or the execution of arbitrary code.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-06-07 CVE Reserved
- 2007-08-08 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (48)
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.securityfocus.com/bid/25163 | 2018-10-16 |
URL | Date | SRC |
---|---|---|
http://security.gentoo.org/glsa/glsa-200710-06.xml | 2018-10-16 | |
http://www.debian.org/security/2008/dsa-1571 | 2018-10-16 | |
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml | 2018-10-16 | |
http://www.mandriva.com/security/advisories?name=MDKSA-2007:193 | 2018-10-16 | |
http://www.redhat.com/support/errata/RHSA-2007-0813.html | 2018-10-16 | |
http://www.redhat.com/support/errata/RHSA-2007-0964.html | 2018-10-16 | |
http://www.redhat.com/support/errata/RHSA-2007-1003.html | 2018-10-16 | |
https://usn.ubuntu.com/522-1 | 2018-10-16 | |
https://access.redhat.com/security/cve/CVE-2007-3108 | 2007-11-15 | |
https://bugzilla.redhat.com/show_bug.cgi?id=245732 | 2007-11-15 |