CVE-2004-2761
First published: Tue Dec 30 2008(Updated: )
The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/rhpki-ca | <0:7.3.0-21.el4 | 0:7.3.0-21.el4 |
| redhat/rhpki-common | <0:7.3.0-41.el4 | 0:7.3.0-41.el4 |
| redhat/rhpki-util | <0:7.3.0-21.el4 | 0:7.3.0-21.el4 |
| redhat/pki-ca | <0:8.0.7-1.el5 | 0:8.0.7-1.el5 |
| redhat/pki-common | <0:8.0.6-2.el5 | 0:8.0.6-2.el5 |
| redhat/pki-util | <0:8.0.5-1.el5 | 0:8.0.5-1.el5 |
| Ietf Md5 | ||
| Ietf X.509 Certificate |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://blogs.verisign.com/ssl-blog/2008/12/on_md5_vulnerabilities_and_mit.php
- http://www.phreedom.org/research/rogue-ca/
- http://www.microsoft.com/technet/security/advisory/961509.mspx
- http://blog.mozilla.com/security/2008/12/30/md5-weaknesses-could-lead-to-certificate-forgery/
- http://www.doxpara.com/research/md5/md5_someday.pdf
- http://www.securityfocus.com/bid/33065
- http://www.win.tue.nl/hashclash/SoftIntCodeSign/
- http://www.win.tue.nl/hashclash/rogue-ca/
- http://blogs.technet.com/swi/archive/2008/12/30/information-regarding-md5-collisions-problem.aspx
- http://www.kb.cert.org/vuls/id/836068
- http://securityreason.com/securityalert/4866
- http://www.cisco.com/en/US/products/products_security_response09186a0080a5d24a.html
- http://secunia.com/advisories/33826
- https://www.redhat.com/archives/fedora-package-announce/2009-February/msg00096.html
- http://www.ubuntu.com/usn/usn-740-1
- http://secunia.com/advisories/34281
- https://bugzilla.redhat.com/show_bug.cgi?id=648886
- http://securitytracker.com/id?1024697
- https://rhn.redhat.com/errata/RHSA-2010-0838.html
- https://rhn.redhat.com/errata/RHSA-2010-0837.html
- http://secunia.com/advisories/42181
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03814en_us
- http://www.securityfocus.com/archive/1/499685/100/0/threaded
- https://access.redhat.com/security/cve/CVE-2004-2761
- http://eprint.iacr.org/2004/199
- http://eprint.iacr.org/2005/067
- https://access.redhat.com/kb/docs/DOC-15379
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=648886#c1
- https://fedorahosted.org/pki/changeset/558
- https://fedorahosted.org/pki/changeset/559
- https://fedorahosted.org/pki/changeset/560
- https://fedorahosted.org/pki/changeset/1313
- https://fedorahosted.org/pki/changeset/1289
- https://fedorahosted.org/pki/changeset/1335
- https://fedorahosted.org/pki/changeset/1230
- https://fedorahosted.org/pki/changeset/1232
- https://www.cve.org/CVERecord?id=CVE-2004-2761 https://nvd.nist.gov/vuln/detail/CVE-2004-2761
- https://access.redhat.com/errata/RHSA-2010:0837
- https://access.redhat.com/errata/RHSA-2010:0838
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-2761.json
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2004-2761
- agent/severity
- agent/references
- agent/remedy
- agent/weakness
- agent/author
- agent/description
- collector/redhat-cve
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- agent/trending
- vendor/ietf
- canonical/ietf md5
- canonical/ietf x.509 certificate
- package-manager/redhat