Environment
eDirectory 8.8 SP2
Novell International Cryptographic Infrastructure (NICI) versions prior to 2.7.2 on all platforms.
Novell International Cryptographic Infrastructure (NICI) versions prior to 2.7.2 on all platforms.
Situation
This vulnerability may allow an attacker to forge an RSA signature.
Resolution
NICI version 2.7.2 is available in Security Services 2.0.4 or newer which
can be downloaded from https://dl.netiq.com
Status
Security AlertAdditional Information
US-Cert VU#845620 http://www.kb.cert.org/vuls/id/845620
CVE-2006-4339 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4339
This vulnerability was reported by Daniel Bleichenbacher to US-Cert.
CVE-2006-4339 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4339
This vulnerability was reported by Daniel Bleichenbacher to US-Cert.