Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:57:09 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2144207039&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Crypto%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fcrypto%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2144207039.1338191829.1338191829.1338191829.1%3B%2B__utmz%3D32867617.1338191829.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/111198/codetective-0.7.tar.bz2 http://packetstormsecurity.org/files/111198/codetective-0.7.tar.bz2 http://packetstormsecurity.org/files/111198/Codetective-0.7.html Tue, 27 Mar 2012 12:12:12 GMT Codetective is an analysis tool to determine the crypto/encoding algorithm used according to traces of its representation. It can be used as a standalone version or as a volatility plugin for memory analysis. Written in Python. http://packetstormsecurity.org/files/111192/MDVSA-2012-038.txt http://packetstormsecurity.org/files/111192/MDVSA-2012-038.txt http://packetstormsecurity.org/files/111192/Mandriva-Linux-Security-Advisory-2012-038.html Mon, 26 Mar 2012 22:00:13 GMT Mandriva Linux Security Advisory 2012-038 - The implementation of Cryptographic Message Syntax and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for context-dependent attackers to decrypt data via a Million Message Attack adaptive chosen ciphertext attack. The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service via a crafted S/MIME message, a different vulnerability than CVE-2006-7250. The updated packages have been patched to correct these issues. http://packetstormsecurity.org/files/109708/codetective.py.txt http://packetstormsecurity.org/files/109708/codetective.py.txt http://packetstormsecurity.org/files/109708/Codetective-Analysis-Tool.html Sun, 12 Feb 2012 16:37:15 GMT Codetective is a simple tool to determine the crypto/encoding algorithm used according to traces of its representation. Written in Python. http://packetstormsecurity.org/files/109489/469.pdf http://packetstormsecurity.org/files/109489/469.pdf http://packetstormsecurity.org/files/109489/Cryptanalysis-Of-INCrypt32-In-HIDs-iCLASS-Systems.html Tue, 07 Feb 2012 01:10:14 GMT The cryptographic algorithm called INCrypt32 is a MAC algorithm to authenticate participants, RFID cards and readers, in HID Global's iCLASS systems. HID's iCLASS cards are widely used contactless smart cards for physical access control. Although INCrypt32 is a heart of the security of HID's iCLASS systems, its security has not been evaluated yet since the specification has not been open to public. In this paper, they reveal the specification of INCrypt32 by reverse engineering an iCLASS card and investigate the security of INCrypt32. As a result, we show that the secret key of size 64 bits can be recovered using only 218 MAC queries if the attacker can request MAC for chosen messages of arbitrary length. If the length of messages is limited to pre-determined values by the authentication protocol, the required number of MAC queries grows to 242 to recover the secret key. http://packetstormsecurity.org/files/108165/dsa-2374-1.txt http://packetstormsecurity.org/files/108165/dsa-2374-1.txt http://packetstormsecurity.org/files/108165/Debian-Security-Advisory-2374-1.html Mon, 26 Dec 2011 15:35:26 GMT Debian Linux Security Advisory 2374-1 - The information security group at ETH Zurich discovered a denial of service vulnerability in the crypto helper handler of the IKE daemon pluto. http://packetstormsecurity.org/files/105404/MDVSA-2011-137.txt http://packetstormsecurity.org/files/105404/MDVSA-2011-137.txt http://packetstormsecurity.org/files/105404/Mandriva-Linux-Security-Advisory-2011-137.html Wed, 28 Sep 2011 22:46:53 GMT Mandriva Linux Security Advisory 2011-137 - The elliptic curve cryptography subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm is used for the ECDHE_ECDSA cipher suite, does not properly implement curves over binary fields, which makes it easier for context-dependent attackers to determine private keys via a timing attack and a lattice calculation. crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past. The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8s and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages, which allows remote attackers to cause a denial of service via out-of-order messages that violate the TLS protocol. http://packetstormsecurity.org/files/105093/dsa-2309-1.txt http://packetstormsecurity.org/files/105093/dsa-2309-1.txt http://packetstormsecurity.org/files/105093/Debian-Security-Advisory-2309-1.html Wed, 14 Sep 2011 13:42:52 GMT Debian Linux Security Advisory 2309-1 - Several fraudulent SSL certificates have been found in the wild issued by the DigiNotar Certificate Authority, obtained through a security compromise of said company. After further updates on this incident, it has been determined that all of DigiNotar's signing certificates can no longer be trusted. Debian, like other software distributors and vendors, has decided to distrust all of DigiNotar's CAs. In this update, this is done in the crypto library (a component of the OpenSSL toolkit) by marking such certificates as revoked. Any application that uses said component should now reject certificates signed by DigiNotar. Individual applications may allow users to override the validation failure. However, making exceptions is highly discouraged and should be carefully verified. http://packetstormsecurity.org/files/104840/dsa-2300-2.txt http://packetstormsecurity.org/files/104840/dsa-2300-2.txt http://packetstormsecurity.org/files/104840/Debian-Security-Advisory-2300-2.html Wed, 07 Sep 2011 00:43:01 GMT Debian Linux Security Advisory 2300-2 - Several unauthorized SSL certificates have been found in the wild issued for the DigiNotar Certificate Authority, obtained through a security compromise with said company. Debian, like other software distributors, has as a precaution decided to disable the DigiNotar Root CA by default in the NSS crypto libraries. http://packetstormsecurity.org/files/104647/dsa-2300-1.txt http://packetstormsecurity.org/files/104647/dsa-2300-1.txt http://packetstormsecurity.org/files/104647/Debian-Security-Advisory-2300-1.html Wed, 31 Aug 2011 20:42:54 GMT Debian Linux Security Advisory 2300-1 - Several unauthorised SSL certificates have been found in the wild issued for the DigiNotar Certificate Authority, obtained through a security compromise with said company. Debian, like other software distributors, has as a precaution decided to disable the DigiNotar Root CA by default in the NSS crypto libraries. http://packetstormsecurity.org/files/101679/timing-attacks.pdf http://packetstormsecurity.org/files/101679/timing-attacks.pdf http://packetstormsecurity.org/files/101679/Remote-Timing-Attacks-Are-Still-Practical.html Wed, 25 May 2011 14:00:31 GMT This whitepaper describes a timing attack vulnerability in OpenSSL's ladder implementation for curves over binary fields. They use this vulnerability to steal the private key of a TLS server where the server authenticates with ECDSA signatures. Using the timing of the exchanged messages, the messages themselves, and the signatures, they mount a lattice attack that recovers the private key. Finally, they describe and implement an effective countermeasure. http://packetstormsecurity.org/files/98108/pycryptopp-0.5.29.tar.gz http://packetstormsecurity.org/files/98108/pycryptopp-0.5.29.tar.gz http://packetstormsecurity.org/files/98108/Pycryptopp-0.5.29.html Wed, 02 Feb 2011 18:22:11 GMT pycryptopp provides a few useful cryptography algorithms for Python programmers, based on the excellent Crypto++ library (which is written in C++). http://packetstormsecurity.org/files/97242/openct-0.6.20.tar.gz http://packetstormsecurity.org/files/97242/openct-0.6.20.tar.gz http://packetstormsecurity.org/files/97242/OpenCT-0.6.20.html Tue, 04 Jan 2011 12:01:11 GMT OpenCT implements driver and middle-ware for smart card readers. OpenCT drivers can be used via the ct-api interface, the ifdhandler interface, or its own interface/middle-ware. It implements drivers for several USB crypto tokens, USB smart card readers, serial smart card readers, and PCMCIA smart card readers. http://packetstormsecurity.org/files/93318/dsa-2100-1.txt http://packetstormsecurity.org/files/93318/dsa-2100-1.txt http://packetstormsecurity.org/files/93318/Debian-Linux-Security-Advisory-2100-1.html Mon, 30 Aug 2010 23:21:02 GMT Debian Linux Security Advisory 2100-1 - George Guninski discovered a double free in the ECDH code of the OpenSSL crypto library, which may lead to denial of service and potentially the execution of arbitrary code. http://packetstormsecurity.org/files/85501/MDVSA-2010-022.txt http://packetstormsecurity.org/files/85501/MDVSA-2010-022.txt http://packetstormsecurity.org/files/85501/Mandriva-Linux-Security-Advisory-2010-022.html Fri, 22 Jan 2010 06:38:14 GMT Mandriva Linux Security Advisory 2010-022 - Memory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function, as demonstrated by use of SSLv3 and PHP with the Apache HTTP Server, a related issue to CVE-2008-1678. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct thies issue. http://packetstormsecurity.org/files/85104/MDVSA-2010-006.txt http://packetstormsecurity.org/files/85104/MDVSA-2010-006.txt http://packetstormsecurity.org/files/85104/Mandriva-Linux-Security-Advisory-2010-006.html Thu, 14 Jan 2010 03:14:39 GMT Mandriva Linux Security Advisory 2010-006 - Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext with a length that is too short to be valid. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. http://packetstormsecurity.org/files/85071/dsa-1969-1.txt http://packetstormsecurity.org/files/85071/dsa-1969-1.txt http://packetstormsecurity.org/files/85071/Debian-Linux-Security-Advisory-1969-1.html Thu, 14 Jan 2010 02:27:14 GMT Debian Linux Security Advisory 1969-1 - It was discovered that krb5, a system for authenticating users and services on a network, is prone to integer underflow in the AES and RC4 decryption operations of the crypto library. A remote attacker can cause crashes, heap corruption, or, under extraordinarily unlikely conditions, arbitrary code execution. http://packetstormsecurity.org/files/85064/MITKRB5-SA-2009-004.txt http://packetstormsecurity.org/files/85064/MITKRB5-SA-2009-004.txt http://packetstormsecurity.org/files/85064/MIT-krb5-Security-Advisory-2009-004.html Thu, 14 Jan 2010 02:16:36 GMT MIT krb5 Security Advisory 2009-004 - Integer underflow bugs in the AES and RC4 decryption operations of the crypto library of the MIT Kerberos software can cause crashes, heap corruption, or, under extraordinarily unlikely conditions, arbitrary code execution. Only releases krb5-1.3 and later are vulnerable, as earlier releases did not contain the functionality implemented by the vulnerable code. http://packetstormsecurity.org/files/78224/nettle-2.0.tar.gz http://packetstormsecurity.org/files/78224/nettle-2.0.tar.gz http://packetstormsecurity.org/files/78224/Nettle-Cryptographic-Library.html Wed, 10 Jun 2009 23:08:50 GMT Nettle is a cryptographic library that is designed to fit easily in more or less any context: in crypto toolkits for object-oriented languages (C++, Python, Pike, etc.), in applications like LSH or GNUPG, or even in kernel space. In most contexts, you need more than the basic cryptographic algorithms; you also need some way to keep track of available algorithms and their properties and variants. You often have some algorithm selection process, often dictated by a protocol you want to implement. And as the requirements of applications differ in subtle and not so subtle ways, an API that fits one application well can be a pain to use in a different context, which is why there are so many different cryptographic libraries around. Nettle tries to avoid this problem by doing one thing, the low-level crypto stuff, and providing a simple but general interface to it. In particular, Nettle doesn't do algorithm selection. It doesn't do memory allocation. It doesn't do any I/O. The idea is that one can build several application- and context-specific interfaces on top of Nettle and share the code, testcases, benchmarks, documentation, etc. http://packetstormsecurity.org/files/76384/dsa-1763-1.txt http://packetstormsecurity.org/files/76384/dsa-1763-1.txt http://packetstormsecurity.org/files/76384/Debian-Linux-Security-Advisory-1763-1.html Tue, 07 Apr 2009 00:14:26 GMT Debian Security Advisory 1763-1 - It was discovered that insufficient length validations in the ASN.1 handling of the OpenSSL crypto library may lead to denial of service when processing a manipulated certificate. http://packetstormsecurity.org/files/75487/sa34147.txt http://packetstormsecurity.org/files/75487/sa34147.txt http://packetstormsecurity.org/files/75487/Secunia-Security-Advisory-34147.html Fri, 06 Mar 2009 16:39:53 GMT Secunia Security Advisory - Ubuntu has issued an update for python-crypto. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. http://packetstormsecurity.org/files/75463/USN-729-1.txt http://packetstormsecurity.org/files/75463/USN-729-1.txt http://packetstormsecurity.org/files/75463/Ubuntu-Security-Notice-729-1.html Fri, 06 Mar 2009 15:49:48 GMT Ubuntu Security Notice USN-729-1 - Mike Wiacek discovered that the ARC2 implementation in Python Crypto did not correctly check the key length. If a user or automated system were tricked into processing a malicious ARC2 stream, a remote attacker could execute arbitrary code or crash the application using Python Crypto, leading to a denial of service. http://packetstormsecurity.org/files/75294/sa34026.txt http://packetstormsecurity.org/files/75294/sa34026.txt http://packetstormsecurity.org/files/75294/Secunia-Security-Advisory-34026.html Fri, 27 Feb 2009 17:18:06 GMT Secunia Security Advisory - Debian has issued an update for python-crypto. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. http://packetstormsecurity.org/files/75292/sa34040.txt http://packetstormsecurity.org/files/75292/sa34040.txt http://packetstormsecurity.org/files/75292/Secunia-Security-Advisory-34040.html Fri, 27 Feb 2009 17:18:00 GMT Secunia Security Advisory - Fedora has issued an update for python-crypto. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. http://packetstormsecurity.org/files/75187/dsa-1726-1.txt http://packetstormsecurity.org/files/75187/dsa-1726-1.txt http://packetstormsecurity.org/files/75187/Debian-Linux-Security-Advisory-1726-1.html Wed, 25 Feb 2009 22:07:00 GMT Debian Security Advisory 1726-1 - Mike Wiacek discovered that a buffer overflow in the ARC2 implementation of Python Crypto, a collection of cryptographic algorithms and protocols for Python allows denial of service and potentially the execution of arbitrary code. http://packetstormsecurity.org/files/72834/glsa-200812-09.txt http://packetstormsecurity.org/files/72834/glsa-200812-09.txt http://packetstormsecurity.org/files/72834/Gentoo-Linux-Security-Advisory-200812-9.html Wed, 10 Dec 2008 17:05:17 GMT Gentoo Linux Security Advisory GLSA 200812-09 - Smart cards formatted using OpenSC do not sufficiently protect the PIN, allowing attackers to reset it. Chaskiel M Grundman reported that OpenSC uses weak permissions (ADMIN file control information of 00) for the 5015 directory on smart cards and USB crypto tokens running Siemens CardOS M4. Versions less than 0.11.6 are affected.