Vulnerability Details : CVE-2007-3108
The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.
Products affected by CVE-2007-3108
- cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-3108
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 18 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-3108
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.2
|
LOW | AV:L/AC:H/Au:N/C:P/I:N/A:N |
1.9
|
2.9
|
NIST |
Vendor statements for CVE-2007-3108
-
Red Hat 2007-08-14This paper describes a possible side-channel attack that hasn’t been proven outside of a lab environment. In reality many factors would make this harder to exploit. If exploited, a local user could obtain RSA private keys (for example for web sites being run on the server). We have rated this as affecting Red Hat products with moderate security severity. Although the OpenSSL team have produced a patch for this issue, it is non-trivial and will require more testing before we can deploy it in a future update. Our current plan is as follows: - To include a backported fix in an OpenSSL update as part of Enterprise Linux 4.6. This will get testing via beta and give time for more extensive internal and upstream testing - To release an update for OpenSSL for other platforms at the same time as 4.6 is released http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-3108
References for CVE-2007-3108
-
https://issues.rpath.com/browse/RPL-1613
-
http://cvs.openssl.org/chngview?cn=16275
-
http://security.gentoo.org/glsa/glsa-200710-06.xml
OpenSSL: Multiple vulnerabilities (GLSA 200710-06) — Gentoo security
-
http://www.redhat.com/support/errata/RHSA-2007-0964.html
Support
-
http://www.securityfocus.com/bid/25163
Patch
-
http://www.securityfocus.com/archive/1/486859/100/0/threaded
-
http://www.vmware.com/security/advisories/VMSA-2008-0013.html
Support Content Notification - Support Portal - Broadcom support portal
-
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
Linux Terminal Server Project: Multiple vulnerabilities (GLSA 200805-07) — Gentoo security
-
https://issues.rpath.com/browse/RPL-1633
-
http://www.vupen.com/english/advisories/2007/4010
Site en construction
-
http://www.redhat.com/support/errata/RHSA-2007-0813.html
Support
-
http://www.vupen.com/english/advisories/2008/2361
Site en construction
-
http://www.kb.cert.org/vuls/id/RGII-74KLP3
VU#724968 - RSA key reconstruction vulnerability
-
http://support.avaya.com/elmodocs2/security/ASA-2007-485.htm
ASA-2007-485 (RHSA-2007-0813)
-
http://www.vupen.com/english/advisories/2007/2759
Site en construction
-
http://www.debian.org/security/2008/dsa-1571
[SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
-
http://www.securityfocus.com/archive/1/485936/100/0/threaded
-
http://www.vupen.com/english/advisories/2008/0064
Site en construction
-
http://www.vupen.com/english/advisories/2008/2362
Site en construction
-
http://lists.vmware.com/pipermail/security-announce/2008/000002.html
502 Bad Gateway
-
http://support.attachmate.com/techdocs/2374.html
Tech Note Not Available
-
http://www.redhat.com/support/errata/RHSA-2007-1003.html
Support
-
http://openssl.org/news/patch-CVE-2007-3108.txt
404 Page not found | Library
-
http://www.securityfocus.com/archive/1/476341/100/0/threaded
-
http://www.vupen.com/english/advisories/2008/2396
Site en construction
-
http://www.kb.cert.org/vuls/id/724968
VU#724968 - RSA key reconstruction vulnerabilityUS Government Resource
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9984
404 Not Found
-
http://www.vmware.com/security/advisories/VMSA-2008-0001.html
Support Content Notification - Support Portal - Broadcom support portal
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:193
Mandriva
-
http://www.bluecoat.com/support/securityadvisories/advisory_openssl_rsa_key_reconstruction_vulnerability
Broadcom Inc. | Connecting Everything
-
https://usn.ubuntu.com/522-1/
404: Page not found | Ubuntu
Jump to