PT-2009-1143 · Rsa Security · Md5

Tomas Hoger

Published

2009-01-05

Updated

2026-05-28

CVE-2004-2761

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MD5 (affected versions not specified)

Description The MD5 Message-Digest Algorithm lacks collision resistance, making it easier for attackers to conduct spoofing attacks. This issue has been demonstrated through attacks on the use of MD5 in the signature algorithm of an X.509 certificate.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of a Broken Cryptographic Algorithm

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310CWE-327CWE-347CWE-328

Related Identifiers

CVE-2004-2761

GHSA-M5M3-46GJ-WCH8

RHSA-2010:0837

RHSA-2010:0838

Affected Products

Md5

PT-2009-1143 · Rsa Security · Md5

CVE-2004-2761

Weakness Enumeration

Related Identifiers

Affected Products

References · 39