CVE-2003-0147
First published: Tue Mar 18 2003(Updated: )
OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| stunnel | =4.02 | |
| OpenSSL libcrypto | =0.9.6i | |
| stunnel | =3.7 | |
| OpenSSL libcrypto | =0.9.6d | |
| OpenSSL libcrypto | =0.9.6 | |
| OpenSSL libcrypto | =0.9.6a | |
| stunnel | =3.14 | |
| stunnel | =3.22 | |
| stunnel | =3.18 | |
| OpenSSL libcrypto | =0.9.6h | |
| OpenSSL libcrypto | =0.9.7 | |
| stunnel | =3.15 | |
| stunnel | =3.16 | |
| stunnel | =3.8 | |
| stunnel | =3.11 | |
| stunnel | =3.12 | |
| stunnel | =3.20 | |
| openpkg openpkg | =1.1 | |
| OpenSSL libcrypto | =0.9.6e | |
| OpenSSL libcrypto | =0.9.6g | |
| stunnel | =3.13 | |
| stunnel | =3.21 | |
| stunnel | =4.04 | |
| OpenSSL libcrypto | =0.9.6b | |
| stunnel | =3.10 | |
| stunnel | =3.17 | |
| stunnel | =3.9 | |
| openpkg openpkg | =1.2 | |
| OpenSSL libcrypto | =0.9.6c | |
| stunnel | =3.19 | |
| stunnel | =4.01 | |
| openpkg openpkg | ||
| stunnel | =4.03 | |
| OpenSSL libcrypto | =0.9.7a | |
| stunnel | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0130.html
- http://www.kb.cert.org/vuls/id/997481
- http://www.openssl.org/news/secadv_20030317.txt
- http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf
- http://www.debian.org/security/2003/dsa-288
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:035
- http://www.redhat.com/support/errata/RHSA-2003-101.html
- http://www.redhat.com/support/errata/RHSA-2003-102.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000625
- http://www.gentoo.org/security/en/glsa/glsa-200303-23.xml
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2003.019.html
- http://marc.info/?l=bugtraq&m=104819602408063&w=2
- http://marc.info/?l=bugtraq&m=104792570615648&w=2
- http://marc.info/?l=bugtraq&m=104829040921835&w=2
- http://marc.info/?l=bugtraq&m=104766550528628&w=2
- http://marc.info/?l=bugtraq&m=104861762028637&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A466
- http://www.securityfocus.com/archive/1/316577/30/25310/threaded
- http://www.securityfocus.com/archive/1/316165/30/25370/threaded
Frequently Asked Questions
What is the severity of CVE-2003-0147?
CVE-2003-0147 is considered high severity as it allows attackers to potentially obtain the private key of a server.
How do I fix CVE-2003-0147?
To fix CVE-2003-0147, upgrade OpenSSL to a version that implements RSA blinding by default.
What versions of OpenSSL are affected by CVE-2003-0147?
CVE-2003-0147 affects OpenSSL versions up to and including 0.9.7.
Is Stunnel affected by CVE-2003-0147?
Yes, Stunnel versions up to 4.02 are affected by CVE-2003-0147.
What kind of attacks can exploit CVE-2003-0147?
CVE-2003-0147 can be exploited through timing attacks that reveal information about the server's private key.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/stunnel
- canonical/stunnel
- version/stunnel/4.02
- vendor/openssl
- canonical/openssl libcrypto
- version/openssl libcrypto/0.9.6i
- version/stunnel/3.7
- version/openssl libcrypto/0.9.6d
- version/openssl libcrypto/0.9.6
- version/openssl libcrypto/0.9.6a
- version/stunnel/3.14
- version/stunnel/3.22
- version/stunnel/3.18
- version/openssl libcrypto/0.9.6h
- version/openssl libcrypto/0.9.7
- version/stunnel/3.15
- version/stunnel/3.16
- version/stunnel/3.8
- version/stunnel/3.11
- version/stunnel/3.12
- version/stunnel/3.20
- vendor/openpkg
- canonical/openpkg openpkg
- version/openpkg openpkg/1.1
- version/openssl libcrypto/0.9.6e
- version/openssl libcrypto/0.9.6g
- version/stunnel/3.13
- version/stunnel/3.21
- version/stunnel/4.04
- version/openssl libcrypto/0.9.6b
- version/stunnel/3.10
- version/stunnel/3.17
- version/stunnel/3.9
- version/openpkg openpkg/1.2
- version/openssl libcrypto/0.9.6c
- version/stunnel/3.19
- version/stunnel/4.01
- version/stunnel/4.03
- version/openssl libcrypto/0.9.7a
- version/stunnel/4.0