The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.
Wednesday 8th of August 2007
Tuesday 16th of October 2018
Find out if you have vulnerabilities exposing you to hackers and malware: Download Mageni's Free Edition
Mageni provides a free vulnerability scanning and management platform which helps you need to find, prioritize, remediate and manage your vulnerabilities.