Security vulnerabilities are present in the Network Security Services (nss) library shipped with Mozilla version 1.7 (for Solaris 8, 9 and 10). Mozilla can be used as a web browser and editor, an irc client, an email client and a news client.

RSA signatures are used to authenticate the source of a message. To prevent RSA signatures from being forged, messages are padded with data to ensure message hashes are adequately sized.

Due to an implementation error in the NSS library shipped with Mozilla 1.7, for RSA digital signatures with a small exponent such as 3, it is possible for a local or remote user who provides data that is processed by the Mozilla application, to calculate a value for the padded data to make an altered message appear to be correctly signed, allowing the signature to be forged.

BugID 6488248 - For Mozilla 1.7:

Mozilla 1.7 RSA implementation may fail to properly verify signatures. Specifically, it may incorrectly parse PKCS-1 padded signatures, ignoring data at the end of a signature. If this data is ignored and a RSA key with a public exponent of three is used, it may be possible to forge the signing key's signature.

This issue is described in the following documents:

• http://www.mozilla.org/security/announce/mfsa2006-60.html
• http://www.kb.cert.org/vuls/id/845620
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4340

BugID 6499438 - For Mozilla 1.7:

NSS library shipped with Mozilla 1.7, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatures for SSL/TLS and email certificates.

This issue is described in the following documents:

• http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462

Note: The issue described in this Sun Alert is specific to the Mozilla application. Multiple Sun products are affected by this issue; for more details please see Sun Alert 102648 at http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1

These issues can occur in the following releases:

SPARC Platform

• Mozilla 1.7 (for Solaris 8 and 9) without patch 120671-04
• Mozilla 1.7 (for Solaris 10) without patch 119115-22

x86 Platform

• Mozilla 1.7 (for Solaris 8 and 9) without patch 120672-04
• Mozilla 1.7 (for Solaris 10) without patch 119116-22

Note: Mozilla 1.4 may be vulnerable to one or more of these security issues. Customers are advised to upgrade to Mozilla 1.7 to apply the security fixes.

To determine the version of Mozilla installed on a Solaris system, the following command can be run:

    % /usr/sfw/bin/mozilla -version
    Mozilla 1.7, (Sun Java Desktop System), build 2005031721

There are no predictable symptoms that would indicate the described issues have been exploited.

There is no workaround for the above mentioned issues. Please see the Resolution section below.

These issues are addressed in the following releases:

SPARC Platform

• Mozilla 1.7 (for Solaris 8 and 9) with patch 120671-04 or later
• Solaris 10 with patch 119115-22 or later

x86 Platform

• Mozilla 1.7 (for Solaris 8 and 9) with patch 120672-04 or later
• Solaris 10 with patch 119116-22 or later

• Updated Contributing Factors and Resolution sections
• State: Resolved

This solution has no attachment