#VU11125 Information disclosure in PyCrypto - CVE-2018-6594


Vulnerability identifier: #VU11125

Vulnerability risk: Low

CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2018-6594

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PyCrypto
Client/Desktop applications / Encryption software

Vendor: GNU

Description
The vulnerability allows a remote unauthenticated attacker to obtain potentially sensitive information on the target system.

The weakness exists in the ElGamal implementation in PyCrypto due to generation of weak ElGamal key parameters by the source code in the lib/Crypto/PublicKey/ElGamal.py file. A remote attacker can gain access to potentially sensitive information.

Mitigation
Install update from vendor's website.

Vulnerable software versions

PyCrypto: 2.6.0 - 2.6.1

External links
https://github.com/dlitz/pycrypto/pull/256/commits/2f6c124e127b5dd98723e7e75a9825c4ed8bd5c7

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell PowerStoreT OS
Multiple vulnerabilities in Dell PowerStore Family
Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data
Multiple vulnerabilities in IBM Integrated Analytics System
Multiple vulnerabilities in IBM Cloud Pak System
Multiple vulnerabilities in IBM Cloud Pak for Security (CP4S)
Gentoo update for PyCrypto
Amazon Linux AMI update for python-crypto
Information disclosure in PyCrypto