CVE-2009-1603: CVE-2009-1603

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1603

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenSC 'pkcs11-tool'不安全关键世代漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenSC是一个基于PKCS#11的实现，为各种unix和linux操作系统提供一个开源的数字证书应用(邮件加密、身份认证，智能卡应用等)的工具。 OpenSC 0.11.7版本的pkcs11-tool中存在src/tools/pkcs11-tool.c,当与未明的第三方PKCS#11模块一起使用时，会生成具有错误的公开指数的RSA索引，这会允许攻击者读取准备被编码的信息中的cleartext格式。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1603

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1603

Please Login to view more intelligence information

http://secunia.com/advisories/35309third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35035third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35293third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/36074third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2009/1295vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2009:123vendor-advisoryx_refsource_MANDRIVA
http://security.gentoo.org/glsa/glsa-200908-01.xmlvendor-advisoryx_refsource_GENTOO
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00095.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00097.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01420.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01432.htmlvendor-advisoryx_refsource_FEDORA
http://www.openwall.com/lists/oss-security/2009/05/08/1mailing-listx_refsource_MLIST
http://www.opensc-project.org/pipermail/opensc-announce/2009-May/000025.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2009-1603

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1603

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2009-1603

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1603

III. Intelligence Information for CVE-2009-1603

IV. Related Vulnerabilities

V. Comments for CVE-2009-1603

Leave a comment