IETF RFC 3279 X.509 Certificate MD5 Signature Collision Vulnerability



X.509 certificates are prone to a signature-collision attack when signed with the MD5 algorithm. Attackers may take advantage of this issue to generate pairs of different, valid X.509 certificates that share a common signature.

An attacker is most likely to exploit this issue to conduct phishing attacks or to impersonate legitimate sites by taking advantage of malicious certificates. Other attacks are likely possible.

NOTE: This attack is an extension of the weakness covered in BID 11849 (MD5 Message Digest Algorithm Hash Collision Weakness).

Information

Bugtraq ID: 33065
Class: Design Error
CVE: CVE-2004-2761

Remote: Yes
Local: No
Published: Dec 30 2008 12:00AM
Updated: Apr 19 2017 03:04PM
Credit: Alexander Sotirov, Marc Stevens, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik, and Benne de Weger.
Vulnerable: Yamaha SRT100 0
Yamaha RTX3000 0
Yamaha Rtx2000 0
Yamaha RTX1500
Yamaha RTX1100
Yamaha RTX1000
Yamaha RTV700
Yamaha RT300i
Yamaha RT107e 0
Yamaha RT105
Yamaha RT104 0
Ubuntu Ubuntu Linux 8.10 sparc
Ubuntu Ubuntu Linux 8.10 powerpc
Ubuntu Ubuntu Linux 8.10 lpia
Ubuntu Ubuntu Linux 8.10 i386
Ubuntu Ubuntu Linux 8.10 amd64
Ubuntu Ubuntu Linux 8.04 LTS sparc
Ubuntu Ubuntu Linux 8.04 LTS powerpc
Ubuntu Ubuntu Linux 8.04 LTS lpia
Ubuntu Ubuntu Linux 8.04 LTS i386
Ubuntu Ubuntu Linux 8.04 LTS amd64
Ubuntu Ubuntu Linux 7.10 sparc
Ubuntu Ubuntu Linux 7.10 powerpc
Ubuntu Ubuntu Linux 7.10 lpia
Ubuntu Ubuntu Linux 7.10 i386
Ubuntu Ubuntu Linux 7.10 amd64
Ubuntu Ubuntu Linux 6.06 LTS sparc
Ubuntu Ubuntu Linux 6.06 LTS powerpc
Ubuntu Ubuntu Linux 6.06 LTS i386
Ubuntu Ubuntu Linux 6.06 LTS amd64
Redhat Certificate Server 7.3
Oracle Trace File Analyzer (TFA) 0
Mozilla Network Security Services (NSS) 3.11.3
Mozilla Network Security Services (NSS) 3.12
Mozilla Network Security Services (NSS) 3.11
IETF RFC 3279: Algorithms and Identifiers for the Inter 0
HP VSR (Comware 7) 0
HP U200S and CS (Comware 5) 0
HP U200A and M (Comware 5) 0
HP SMB1920 (Comware 5) R1106
HP SMB1910 (Comware 5) R1108
HP SMB 1620 (Comware 5) R1105
HP SecBlade FW (Comware 5) 0
HP MSR4000 (Comware 7) 0
HP MSR3000 (Comware 7) 0
HP MSR2000 (Comware 7) 0
HP MSR20-1X (Comware 5) 0
HP MSR20 (Comware 5) 0
HP MSR1000 (Comware 7) 0
HP MSR1000 (Comware 5) 0
HP MSR 9XX (Comware 5) 0
HP MSR 93X (Comware 5) 0
HP MSR 50-G2 (Comware 5) 0
HP MSR 30-1X (Comware 5) 0
HP MSR 30-16 (Comware 5) 0
HP MSR 30 (Comware 5) 0
HP Moonshot 0
HP JG768AAE HP PCM+ to IMC Std Upg w/ 200-node E-LTU 0
HP JG767AAE HP IMC SmCnct WSM Vrtl Applnc SW E-LTU 0
HP JG766AAE HP IMC SmCnct Vrtl Applnc SW E-LTU 0
HP JG748AAE HP IMC Ent SW Plat w/ 50 Nodes E-LTU 0
HP JG747AAE HP IMC Std SW Plat w/ 50 Nodes E-LTU 0
HP JG660AAE HP IMC Smart Connect w/WLM VAE E-LTU 0
HP JG590AAE HP IMC Bsc WLAN Mgr SW Pltfm 50 AP E-LTU 0
HP JG550AAE HP PMM to IMC Bsc WLM Upgr w/150AP E-LTU 0
HP JG549AAE HP PCM+ to IMC Std Upgr w/200-node E-LTU 0
HP JG548AAE HP PCM+ to IMC Bsc Upgr w/50-node E-LTU 0
HP JG546AAE HP IMC Basic SW Platform w/50-node E-LTU 0
HP JF378AAE HP IMC Ent S/W Pltfrm w/200-node E-LTU 0
HP JF378A HP IMC Ent S/W Platform w/200-node Lic 0
HP JF377AAE HP IMC Std S/W Pltfrm w/100-node E-LTU 0
HP JF377A HP IMC Std S/W Platform w/100-node Lic 0
HP JF289AAE HP Enterprise Management System to Intelligent Manageme 0
HP JF288AAE HP Network Director to Intelligent Management Center 0
HP JD816A HP A-IMC Standard Edition Software DVD Media 0
HP JD815A HP IMC Std Platform w/100-node License 0
HP JD814A HP A-IMC Enterprise Edition Software DVD Media 0
HP JD808A HP IMC Ent Platform w/100-node License 0
HP JD126A HP IMC Ent S/W Platform w/100-node 0
HP JD125A HP IMC Std S/W Platform w/100-node 0
HP HSR6800 (Comware 7) 0
HP HSR6800 (Comware 5) 0
HP HSR6602 (Comware 5) 0
HP HP870 (Comware 5) 0
HP HP850 (Comware 5) 0
HP HP830 (Comware 5) 0
HP F5000-C/S (Comware 5) 0
HP F1000-E (Comware 5) 0
HP F1000-A-EI (Comware 5) 0
HP 9500E (Comware 5) 0
HP 7900 (Comware 7) R2122
HP 7500 (Comware 7) 0
HP 7500 (Comware 5) 0
HP 6600 RSE RU (Comware 5 Low Encryption SW) R3303P18
HP 6127XLG 0
HP 6125XLG 0
HP 5950 (Comware 7) 0
HP 5940 (Comware 7) 0
HP 5930 (Comware 7) 0
HP 5920 (Comware 7) 0
HP 5900 (Comware 7) 0
HP 5830 (Comware 5) 0
HP 5800 (Comware 5) 0
HP 5500SI (Comware 5) 0
HP 5500 HI (Comware 5) 0
HP 5500 EI (Comware 5) 0
HP 5130 (Comware 7) R3108P03
HP 5120 SI (Comware 5) 0
HP 5120 EI (Comware 5) 0
HP 4800G (Comware 5) 0
HP 4500G (Comware 5) 0
HP 4210G (Comware 5) 0
HP 12500 (Comware 7) 0
HP 12500 (Comware 5) 0
HP 10500 (Comware 7) 0
HP 10500 (Comware 5) 0
F5 ARX 6.4
F5 ARX 6.3
F5 ARX 6.2
F5 ARX 6.1.1
F5 ARX 6.1
F5 ARX 6.0
Cisco IOS CA 0


Not Vulnerable: Oracle Trace File Analyzer (TFA) 12.1.2.8.4
Mozilla Network Security Services (NSS) 3.12.2


Exploit


This attack has been demonstrated; please see the references for more information.


Related Posts