Note: This is an archival copy of Security Sun Alert 200196 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000148.1.
Article ID : 1000148.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2010-10-22
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products

Category
Security

Release Phase
Resolved

Bug Id
<SUNBUG 6466389>, <SUNBUG 6469538>, <SUNBUG 6468495>, <SUNBUG 6467218>, <SUNBUG 6469236>, <SUNBUG 6469123>, <SUNBUG 6473089>, <SUNBUG 6499438>, <SUNBUG 6880275>

Date of Preliminary Release
02-OCT-2006

Date of Resolved Release
25-FEB-2010

Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products

1. Impact

Certain Sun products (including some bundled third party products) may be vulnerable to an RSA(1) Signature Verification vulnerability that allows unauthorized forged certificates to be validated. This may result in a number of different types of remote exploits.

The specific impact will vary from product to product. Please see the "Contributing Factors" section for further details.

More details of the issue are available from CERT Vulnerability VU#845620 at http://www.kb.cert.org/vuls/id/845620 which is also mentioned at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4339

2. Contributing Factors

The following Sun products (which utilize the RSA algorithms) may be affected by vulnerabilities described in the CERT Advisory above:


Product Name Vulnerable? Reference BugID
JDK Yes Sun Alert ID:102686 6466389



6469538
NSS Yes Sun Alert ID:102656 6468495


Sun Alert ID:102781 6488248
OpenSSL (Bundled in Solaris) Yes
 Sun Alert ID:102744 6467218
SUN Crypto Cards No
N/A
Solaris Cryptographic Framework No
N/A
Mozilla (Bundled in Solaris) Yes
 Sun Alert ID:102781 6488248,6499438
IPSec/IKE Yes
 Sun Alert ID:102722 6469236
Secure Global Desktop Yes Sun Alert ID:102657 6469123
GnuTLS (Bundled in Solaris) Yes Sun Alert ID:102970 6473089
StarOffice Yes http://blogs.sun.com/security/entry/cve_2006_4339_vulnerability_in 6880275
SJS Server Products Yes Sun Alert ID:102696 6472033



6473494
Solaris WAN Boot Yes Sun Alert ID:102759 6467218

Notes:

  1. This issue for NSS impacts all Java Enterprise System products (ie: Application Server, Directory Server, Messaging Server, etc) and Solaris.
3. Symptoms

Please refer to the respective Sun Alert Notifications listed in "Contributing Factors" for the affected products listed.

4. Workaround

Please refer to the respective Sun Alert Notifications for the affected products listed.

5. Resolution

Please refer to the respective Sun Alert Notifications for the affected products listed.

Note: For SDK and JRE 1.4.2 and 1.3.1, and for JSSE 1.0.3, this issue will be addressed in upcoming update releases.

J2SE 5.0 is available for download at the following link:

http://java.sun.com/j2se/1.5.0/download.jsp

For more information on Security Sun Alerts, see 1009886.1.

Modification History

20-Oct-2006: Updated Contributing Factors section

25-Oct-2006: Updated Contributing Factors section

03-Nov-2006: Updated Contributing Factors section

15-Nov-2006: Updated Contributing Factors section

27-Nov-2006: Updated Contributing Factors section

08-Dec-2006: Updated Contributing Factors section

22-Dec-2006: Updated Contributing Factors section

22-Jan-2007: Updated Contributing Factors section

21-JUN-2007: Updated Contributing Factors section
13-Oct-2009: Updated BugIDs and Contributing Factors section

22-Oct-2010: Updated Contributing Factors section, now Resolved




Attachments
This solution has no attachment