PT-2009-1143 · Rsa Security · Md5

Tomas Hoger

Publicado

2009-01-05

Atualizado

2026-05-28

CVE-2004-2761

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MD5 (affected versions not specified)

Description The MD5 Message-Digest Algorithm lacks collision resistance, making it easier for attackers to conduct spoofing attacks. This issue has been demonstrated through attacks on the use of MD5 in the signature algorithm of an X.509 certificate.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of a Broken Cryptographic Algorithm

Improper Verification of Cryptographic Signature

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310CWE-327CWE-347CWE-328

Identificadores relacionados

CVE-2004-2761

GHSA-M5M3-46GJ-WCH8

RHSA-2010:0837

RHSA-2010:0838

Produtos afetados

Md5

PT-2009-1143 · Rsa Security · Md5

CVE-2004-2761

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 39