The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.
References
Configurations
History
No history.
Information
Published : 2007-08-08 01:17
Updated : 2023-12-10 10:40
NVD link : CVE-2007-3108
Mitre link : CVE-2007-3108
CVE.ORG link : CVE-2007-3108
JSON object : View
Products Affected
openssl
- openssl
CWE