Moderate

CVE-2003-0147 - Unspecified vulnerability in multiple products

Publication: 2003-03-31
Summary

OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal).

Risk level (CVSS 5)

Moderate

5.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Openpkg Openpkg
  • Openssl Openssl 0.9.6e
  • Openssl Openssl 0.9.6
  • Openssl Openssl 0.9.7
  • Openpkg Openpkg 1.1
  • Openpkg Openpkg 1.2
  • Stunnel Stunnel 3.7
  • Stunnel Stunnel 3.8
  • Stunnel Stunnel 3.9
  • Openssl Openssl 0.9.6g
  • Openssl Openssl 0.9.6h
  • Openssl Openssl 0.9.6i
  • Openssl Openssl 0.9.6a
  • Openssl Openssl 0.9.7a
  • Openssl Openssl 0.9.6b
  • Openssl Openssl 0.9.6c
  • Openssl Openssl 0.9.6d
  • Stunnel Stunnel 3.10
  • Stunnel Stunnel 3.11
  • Stunnel Stunnel 3.12
  • Stunnel Stunnel 3.13
  • Stunnel Stunnel 3.14
  • Stunnel Stunnel 3.15
  • Stunnel Stunnel 3.16
  • Stunnel Stunnel 3.17
  • Stunnel Stunnel 3.18
  • Stunnel Stunnel 3.19
  • Stunnel Stunnel 3.20
  • Stunnel Stunnel 3.21
  • Stunnel Stunnel 3.22
  • Stunnel Stunnel 4.0
  • Stunnel Stunnel 4.01
  • Stunnel Stunnel 4.02
  • Stunnel Stunnel 4.03
  • Stunnel Stunnel 4.04