CVE DATABASE / CVE-2006-4339
CVE-2006-4339
CVSS 4.3 · MEDIUM
Summary
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.
CVSS 2.0 breakdown
| Base score | 4.3 (MEDIUM) |
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
| Attack vector | NETWORK |
| Attack complexity | MEDIUM |
| Confidentiality | PARTIAL |
| Integrity | NONE |
| Availability | NONE |
Weakness type (CWE)
Affected products
Openssl openssl
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc
- http://dev2dev.bea.com/pub/advisory/238
- http://docs.info.apple.com/article.html?artnum=304829
- http://docs.info.apple.com/article.html?artnum=307177
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01070495
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118771
- http://itrc.hp.com/service/cki/docDisplay.do?docId=c00849540
- http://jvn.jp/en/jp/JVN51615542/index.html
- http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000079.html
- http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html
- http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
- http://lists.vmware.com/pipermail/security-announce/2008/000008.html
- http://marc.info/?l=bind-announce&m=116253119512445&w=2
- http://marc.info/?l=bugtraq&m=130497311408250&w=2
- http://openvpn.net/changelog.html
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.