Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IKEv2 Denial of Service via RSA-SHA1 (PKCS#1 RSASSA-PKCS1-v1_5) authentication payload
Vulnerability Description
Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly verify the DER encoding of the ASN.1 digest when the IKEv2 AUTH payload was encoded using RSASSA-PKCS1-v1_5 (RFC 8017). A remote attacker can use a variation on the Bleichenbacher attack to forge the AUTH payload when small public exponents are used (e.g., e=3), leading to impersonation. Additionally, a remote attacker, by encoding a shorter than expected hash in the AUTH payload, could trigger an assertion leading to denial-of-service. The daemon aborts and restarts; continued exploitation causes sustained denial of service. Remote code execution is not possible. X.509 certificate verifications of the remote IKE peer are not affected.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
libreswan 加密问题漏洞
Vulnerability Description
Libreswan是Libreswan团队开源的一个IPsec实现。 libreswan 5.3及之前版本存在加密问题漏洞,该漏洞源于函数RSA_authenticate_hash_signature_pkcs1_1_5_rsa()未能正确验证IKEv2 AUTH载荷中ASN.1摘要的DER编码,导致远程攻击者可通过Bleichenbacher攻击变种伪造AUTH载荷,导致身份冒充;同时,通过编码较短的哈希可触发断言导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A