oval:org.mitre.oval:def:9937

Definition Id: oval:org.mitre.oval:def:9937
 
Oval ID: oval:org.mitre.oval:def:9937
Title: verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.
Description: verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.
Family: unix Class: vulnerability
Reference(s): CVE-2006-4790
Version: 5
Platform(s): Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16636
 
Oval ID: oval:org.mitre.oval:def:16636
Title: CentOS Linux 4.x
Description: The operating system installed on the system is CentOS Linux 4.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:4
Version: 3
Platform(s): CentOS Linux 4
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:9937
Definition Id: oval:org.mitre.oval:def:15990
 
Oval ID: oval:org.mitre.oval:def:15990
Title: Oracle Linux 4.x
Description: The operating system installed on the system is Oracle Linux 4.x
Family: unix Class: inventory
Reference(s): cpe:/o:oracle:linux:4
Version: 5
Platform(s): Oracle Linux 4
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:9937
Definition Id: oval:org.mitre.oval:def:11831
 
Oval ID: oval:org.mitre.oval:def:11831
Title: The operating system installed on the system is Red Hat Enterprise Linux 4
Description: The operating system installed on the system is Red Hat Enterprise Linux 4.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:4
Version: 7
Platform(s): Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:9937