CVE-2004-0004

The libCheckSignature function in crypto-utils.lib for OpenCA 0.9.1.6 and earlier only compares the serial of the signer's certificate and the one in the database, which can cause OpenCA to incorrectly accept a signature if the certificate's chain is trusted by OpenCA's chain directory, allowing remote attackers to spoof requests from other users.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=107427313700554&w=2
http://www.kb.cert.org/vuls/id/336446	US Government Resource
http://www.openca.org/news/CAN-2004-0004.txt	Patch Vendor Advisory
http://www.osvdb.org/3615
http://www.securityfocus.com/bid/9435	Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/14847

Configurations

Configuration 1 (hide)

cpe:2.3:a:openca:openca:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2004-02-17 05:00

Updated : 2024-02-28 10:24

NVD link : CVE-2004-0004

Mitre link : CVE-2004-0004

CVE.ORG link : CVE-2004-0004

JSON object : View

Products Affected

openca

openca

CWE

NVD-CWE-Other

{"id": "CVE-2004-0004", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2004-02-17T05:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=107427313700554&w=2", "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/336446", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.openca.org/news/CAN-2004-0004.txt", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/3615", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/9435", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/14847", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The libCheckSignature function in crypto-utils.lib for OpenCA 0.9.1.6 and earlier only compares the serial of the signer's certificate and the one in the database, which can cause OpenCA to incorrectly accept a signature if the certificate's chain is trusted by OpenCA's chain directory, allowing remote attackers to spoof requests from other users."}, {"lang": "es", "value": "La funci\u00f3n libCheckSignature en crypto-utils.lib de OpenCA 0.9.1.6 y anteriores s\u00f3lo compara el n\u00famero de serie del certificado del firmante y el de la base de datos, lo que puede causar que OpenCA acepte una firma de manera incorrecta si la cadena del certificado es de confianza para el directorio de cadenas de OpenCA, permitiendo a atacantes remotos suplantar peticiones de otros usuarios."}], "lastModified": "2017-10-10T01:30:15.890", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openca:openca:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "683731EC-7E2E-42F8-B6A7-4EAD0E0D9AD1", "versionEndIncluding": "0.9.1.6"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}