Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/05/2009 Updated: 14/02/2024

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows malicious users to read the cleartext form of messages that were intended to be encrypted.

Vulnerable Product	Search on Vulmon	Subscribe to Product
opensc-project opensc 0.11.7
fedoraproject fedora 11
fedoraproject fedora 10
fedoraproject fedora 9

CWE-312 http://www.openwall.com/lists/oss-security/2009/05/08/1 http://secunia.com/advisories/35035 http://www.vupen.com/english/advisories/2009/1295 http://www.opensc-project.org/pipermail/opensc-announce/2009-May/000025.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:123 http://secunia.com/advisories/35309 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01432.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00095.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01420.html http://secunia.com/advisories/35293 https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00097.html http://security.gentoo.org/glsa/glsa-200908-01.xml http://secunia.com/advisories/36074 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-1603

Vulnerability Summary

References

Vulmon Search

About

Products

Connect