2116 : PKCS 1 Version 1.5 Session Key Retrieval (Bleichenbacher Attack)
Printer | http://osvdb.org/2116 | Email This | Edit Vulnerability

Views This Week
6

Views All Time
146

Info

Last Modified
about 1 month ago

Percent Complete
65%

Disclosure
Feb 06, 2001

Discovery
Feb 06, 2001

Dates

Exploit
Feb 06, 2001

Solution
Unknown

Description

 Several protocols which implement the digital enveloping method, described in version 1.5 of the PKCS #1 standard, are susceptible to an adaptive ciphertext attack. This allows the recovery of session keys, thus compromising the integrity of the data transmitting during that session. The data encryption techniques described in RSA's PKCS #1 standard are used in many protocols which rely on, at least in part, the security provided by public-key cryptography systems.

Classification

Unknown or Incomplete

Technical

 It is possible for a remote attacker to decrypt and/or alter traffic via an attack on PKCS#1 version 1.5 knows as a Bleichenbacher attack. OpenSSH up to version 2.3.0, AppGate, and SSH Communications Security ssh-1 up to version 1.2.31 have the vulnerability present, although it may not be exploitable due to configurations.

For a more detailed explanation on the Bleichenbacher attack, please read CERT VU 888801 and CERT VU 997481.

Solution

 Upgrade to the latest version of SSH software and disable the SSH 1 protocol.

Products
Cisco Systems, Inc.
Watch-list
IOS
Watch-list
 12.0
12.1
12.2
WebNS
Watch-list
 3.0
3.1
4.0
4.0.1
4.1
Catalyst 6000
Watch-list
 6.2
OpenSSH
Watch-list
SSH
Watch-list
 1.2.3
2.1
2.1.1
SSH Communications Security
Watch-list
SSH
Watch-list
 1.2.31
XySSL
Watch-list
XySSL
Watch-list
 0.8

References

Tools & Filters

Nessus

 10882 11342 14860 14864 14923

Manual Testing Notes

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

 None found at this time

Comments

Add Comment

No Comments.

DONATE NOW!

User Status

Quick Searches

Advertisements

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2008 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use