ID CVE-2006-5111
Summary The libksba library 0.9.12 and possibly other versions, as used by gpgsm in the newpg package on SUSE LINUX, allows attackers to cause a denial of service (application crash) via a malformed X.509 certificate in a signature.
References
Vulnerable Configurations
  • cpe:2.3:a:libksba_library:libksba_library:0.9.12
    cpe:2.3:a:libksba_library:libksba_library:0.9.12
CVSS
Base: 5.0 (as of 03-10-2006 - 10:50)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2006-183.NASL
    description The libksba library, as used by gpgsm in the gnupg2 package, allows attackers to cause a denial of service (application crash) via a malformed X.509 certificate in a signature. libksba-0.9.15 in Mandriva 2007.0 is not affected by this issue. Updated packages have been patched to correct this issue.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 24568
    published 2007-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24568
    title Mandrake Linux Security Advisory : libksba (MDKSA-2006:183)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-365-1.NASL
    description A parsing failure was discovered in the handling of X.509 certificates that contained extra trailing data. Malformed or malicious certificates could cause services using libksba to crash, potentially creating a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 27945
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27945
    title Ubuntu 5.04 : libksba vulnerability (USN-365-1)
refmap via4
bid 20565
confirm http://www.novell.com/linux/download/updates/101_x86_64.html
mandriva MDKSA-2006:183
secunia
  • 22423
  • 22445
  • 22473
suse SUSE-SR:2006:023
ubuntu USN-365-1
xf libksba-x509-dos(29621)
Last major update 15-09-2010 - 01:27
Published 03-10-2006 - 00:03
Last modified 19-07-2017 - 21:33
Back to Top