Unknown
CVE-2006-5201
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- jdk 1.5.0,
- jre 1.3.1,
- jre 1.3.1 03,
- jre 1.3.1 04,
- jre 1.3.1 05,
- jre 1.3.1 06,
- jre 1.3.1 07,
- jre 1.3.1 08,
- jre 1.3.1 09,
- jre 1.3.1 10,
- jre 1.3.1 11,
- jre 1.3.1 12,
- jre 1.3.1 13,
- jre 1.3.1 14,
- jre 1.3.1 15,
- jre 1.3.1 16,
- jre 1.3.1 17,
- jre 1.3.1 18,
- jre 1.3.1 19,
- jre 1.3.1 2,
- jre 1.4.2,
- jre 1.4.2 1,
- jre 1.4.2 10,
- jre 1.4.2 11,
- jre 1.4.2 12,
- jre 1.4.2 2,
- jre 1.4.2 3,
- jre 1.4.2 4,
- jre 1.4.2 5,
- jre 1.4.2 6,
- jre 1.4.2 7,
- jre 1.4.2 8,
- jre 1.4.2 9,
- jre 1.5.0,
- jsse 1.0.3,
- jsse 1.0.3 01,
- jsse 1.0.3 02,
- jsse 1.0.3 03,
- nss,
- sdk 1.3.1,
- sdk 1.3.1 01,
- sdk 1.3.1 01a,
- sdk 1.3.1 02,
- sdk 1.3.1 03,
- sdk 1.3.1 04,
- sdk 1.3.1 05,
- sdk 1.3.1 06,
- sdk 1.3.1 07,
- sdk 1.3.1 08,
- sdk 1.3.1 09,
- sdk 1.3.1 10,
- sdk 1.3.1 11,
- sdk 1.3.1 12,
- sdk 1.3.1 13,
- sdk 1.3.1 14,
- sdk 1.3.1 15,
- sdk 1.3.1 16,
- sdk 1.3.1 17,
- sdk 1.3.1 18,
- sdk 1.3.1 19,
- sdk 1.4.2,
- sdk 1.4.2 1,
- sdk 1.4.2 10,
- sdk 1.4.2 11,
- sdk 1.4.2 12,
- sdk 1.4.2 2,
- sdk 1.4.2 3,
- sdk 1.4.2 4,
- sdk 1.4.2 5,
- sdk 1.4.2 6,
- sdk 1.4.2 7,
- sdk 1.4.2 8,
- sdk 1.4.2 9,
- secure global desktop,
- solaris 10.0,
- solaris 9.0,
- staroffice,
- sunos 5.8
References
Advisory
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
