Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2006-4339

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.

SeverityMEDIUM
CVSS4.3
CWECWE-310
KEV
Published
Modified

Related Products

Product Advisory Evidence
CiscoWorks Common Services (CS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
CiscoWorks Common Management Foundation (CMF) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Wireless LAN Controller (WLC) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Wide Area File Services (WAFS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Wide Area Application Services (WAAS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Unified Presence Server Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Unified Communications Manager Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Security Monitoring, Analysis, and Response System (MARS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Security Agent Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco SIP Proxy Server Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Prime Access Registrar Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco PIX/ASA Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco ONS 15454 System Software Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco MDS SAN-OS Software Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Intrusion Detection System (IDS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco GSS Global Site Selector Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Content Services Switch (CSS) Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Cisco Application and Content Networking System (ACNS) Software Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln
Application and Content Networking System (ACNS) Software Cisco-SA-20060905-CVE-2007-5810 Cisco OpenVuln