CVE-2013-1624

The TLS implementation in the Bouncy Castle Java library before 1.48 and C# library before 1.8 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.

Published Bycve@mitre.org

Published DateFeb 08, 2013, 19:55

Affected Versions(1)

org.bouncycastle:bcprov-jdk15on(Maven)

Introduced0

Fixed1.48

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
org.bouncycastle:bcprov-jdk15on(Maven)	0	1.48	N/A

Weakness Type (CWE):CWE-310

CVSS Metrics

Base Score

Vector String

AV:N/AC:H/Au:N/C:P/I:P/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

PARTIAL

Availability (A)

NONE

References

Weakness Type (CWE):CWE-310

CVSS Metrics

Base Score

Vector String

AV:N/AC:H/Au:N/C:P/I:P/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

PARTIAL

Availability (A)

NONE