CVE-2006-4339
openssl096 - cryptographic weakness
EPSS 4.5%
Description
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.
How to fix CVE-2006-4339
To remediate CVE-2006-4339, upgrade the affected package to a fixed version below.
- Debian/openssl—upgrade to 0.9.8b-3 or later
- Debian/openssl—upgrade to 0.9.7e-3sarge2 or later
- —upgrade to 0.9.6m-1sarge2 or later
Is CVE-2006-4339 being exploited?
Low — EPSS is 4.5%, meaning exploitation activity has not been observed at scale.
Affected packages (3)
- from 0, < 0.9.8b-3
- from 0, < 0.9.7e-3sarge2
- from 0, < 0.9.6m-1sarge2