#200196: Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products

Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products

Category :	Security
Release Phase :	Preliminary
Product :	Solaris Security
Bug Id :	6466389, 6469538, 6468495, 6467218, 6469236, 6469123, 6473089, 6499438
Product :	Mozilla 1.4 for Solaris Sun Java System Application Server 9.1 Solaris 10 Operating System Sun Secure Global Desktop Software 4.5 StarOffice 9 Software Sun Java Enterprise System 7

Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products

1. Impact

Certain Sun products (including some bundled third party products) may be vulnerable to an RSA(1) Signature Verification vulnerability that allows unauthorized forged certificates to be validated. This may result in a number of different types of remote exploits.

The specific impact will vary from product to product. Please see the "Contributing Factors" section for further details.

More details of the issue are available from CERT Vulnerability VU#845620 at http://www.kb.cert.org/vuls/id/845620 which is also mentioned at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4339

2. Contributing Factors

The following Sun products (which utilize the RSA algorithms) may be affected by vulnerabilities described in the CERT Advisory above:

    Product Name                     Vulnerable?       Reference          BugID
    ___________________________________________________________________________

    JDK                                Yes         Sun Alert ID:102686    6466389
                                                                          6469538
    NSS                                Yes         Sun Alert ID:102656    6468495
                                                   Sun Alert ID:102781    6488248
                                                                          6499438
    OpenSSL (Bundled in Solaris)       Yes         Sun Alert ID:102744    6467218
    SUN Crypto Cards                    No                                 N/A
    Solaris Cryptographic Framework     No                                 N/A
    Mozilla (Bundled in Solaris)       Yes         Sun Alert ID:102781    6488248,6499438
    IPSec/IKE                          Yes         Sun Alert ID:102722    6469236
    Secure Global Desktop              Yes         Sun Alert ID:102657    6469123
    GnuTLS (Bundled in Solaris)        Yes	   Sun Alert ID:102970    6473089
    StarOffice			       Yes	   Sun Alert ID:(TBD)      TBD
    SJS Server Products                Yes         Sun Alert ID:102696    6472033
                                                                          6473494
    Solaris WAN Boot                   Yes         Sun Alert ID:102759    6467218

Notes:

This issue for NSS impacts all Java Enterprise System products (ie: Application Server, Directory Server, Messaging Server, etc) and Solaris.
The Sun Alert ID for each affected product will be added as they are made available.

3. Symptoms

Please refer to the respective Sun Alert Notifications listed in "Contributing Factors" for the affected products listed.

4. Workaround

Please refer to the respective Sun Alert Notifications (to be available on SunSolve) for the affected products listed.

5. Resolution

Please refer to the respective Sun Alert Notifications (to be available on SunSolve) for the affected products listed.

Note: For SDK and JRE 1.4.2 and 1.3.1, and for JSSE 1.0.3, this issue will be addressed in upcoming update releases.

J2SE 5.0 is available for download at the following link:

http://java.sun.com/j2se/1.5.0/download.jsp

For more information on Security Sun Alerts, see Technical Instruction ID 213557.

This Sun Alert notification is being provided to you on an "AS IS" basis. This Sun Alert notification may contain information provided by third parties. The issues described in this Sun Alert notification may or may not impact your system(s). Sun makes no representations, warranties, or guarantees as to the information contained herein. ANY AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This Sun Alert notification contains Sun proprietary and confidential information. It is being provided to you pursuant to the provisions of your agreement to purchase services from Sun, or, if you do not have such an agreement, the Sun.com Terms of Use. This Sun Alert notification may only be used for the purposes contemplated by these agreements.

Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.

Modification History

13-Oct-2009: Updated BugIDs and Contributing Factors section

Date: 20-OCT-2006

20-Oct-2006:

Updated Contributing Factors section

Date: 25-OCT-2006

25-Oct-2006:

Updated Contributing Factors section

Date: 03-NOV-2006

03-Nov-2006:

Updated Contributing Factors section

Date: 15-NOV-2006

15-Nov-2006:

Updated Contributing Factors section

Date: 28-NOV-2006

27-Nov-2006:

Updated Contributing Factors section

Date: 08-DEC-2006

08-Dec-2006:

Updated Contributing Factors section

Date: 22-DEC-2006

22-Dec-2006:

Updated Contributing Factors section

Date: 22-JAN-2007

22-Jan-2007:

Updated Contributing Factors section

Date: 21-JUN-2007

Updated Contributing Factors section

Attachments

This solution has no attachment

Login Required

Login Required