CVE-2013-5915

Published: Oct 4, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The RSA-CRT implementation in PolarSSL before 1.2.9 does not properly perform Montgomery multiplication, which might allow remote attackers to conduct a timing side-channel attack and retrieve RSA private keys.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

55084

third-party-advisory

x_refsource_SECUNIA

FEDORA-2013-18228

vendor-advisory

x_refsource_FEDORA

62771

vdb-entry

x_refsource_BID

98049

vdb-entry

x_refsource_OSVDB

DSA-2782

vendor-advisory

x_refsource_DEBIAN

FEDORA-2013-18251

vendor-advisory

x_refsource_FEDORA

FEDORA-2013-18216

vendor-advisory

x_refsource_FEDORA

https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2013-05

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-5915

Description

Affected Products

References