Vulnerability Description
OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openpkg | Openpkg | All versions |
| Openssl | Openssl | 0.9.6 |
| Stunnel | Stunnel | 3.7 |
References
- ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-014.0.txt
- ftp://patches.sgi.com/support/free/security/advisories/20030501-01-I
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0130.htmlVendor Advisory
- http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000625
- http://marc.info/?l=bugtraq&m=104766550528628&w=2
- http://marc.info/?l=bugtraq&m=104792570615648&w=2
- http://marc.info/?l=bugtraq&m=104819602408063&w=2
- http://marc.info/?l=bugtraq&m=104829040921835&w=2
- http://marc.info/?l=bugtraq&m=104861762028637&w=2
- http://www.debian.org/security/2003/dsa-288
- http://www.gentoo.org/security/en/glsa/glsa-200303-23.xml
- http://www.kb.cert.org/vuls/id/997481Third Party AdvisoryUS Government Resource
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:035
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2003.019.html
FAQ
What is CVE-2003-0147?
CVE-2003-0147 is a vulnerability with a CVSS score of 5.0 (MEDIUM). OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra redu...
How severe is CVE-2003-0147?
CVE-2003-0147 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0147?
Check the references section above for vendor advisories and patch information. Affected products include: Openpkg Openpkg, Openssl Openssl, Stunnel Stunnel.