New Search

OpenSSL No RSA Blinding Vulnerability

oval:org.mitre.oval:def:466

OpenSSL does not use RSA blinding by default which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal).

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Linux 9
Class:
vulnerability
Reference(s):
  • CVE-2003-0147
Product(s):
  • OpenSSL