CVE-2023-39969

Name of the Vulnerable Software and Affected Versions uthenticode version 1.0.9

Description uthenticode is a small cross-platform library for partially verifying Authenticode digital signatures. Version 1.0.9 of uthenticode hashed the entire file rather than hashing sections by virtual address, in violation of the Authenticode specification. As a result, an attacker could modify code within a binary without changing its Authenticode hash, making it appear valid from uthenticode's perspective. By design, uthenticode does not perform full-chain validation. However, the malleability of signature verification introduced in 1.0.9 was an unintended oversight.

Recommendations For uthenticode version 1.0.9, upgrade to a version in the 2.x series to address the vulnerability. At the moment, there is no information about other versions that contain a fix for this vulnerability.