Main Vulnerability Database Exploits ID:4955 - Exploit for Comparison using wrong factors in The Bouncy Castle Crypto Package For Java - CVE-2020-28052

ID:4955 - Exploit for Comparison using wrong factors in The Bouncy Castle Crypto Package For Java - CVE-2020-28052

Published: December 23, 2020

Vulnerability identifier: #VU49086

Vulnerability risk: High

CVE-ID: CVE-2020-28052

CWE-ID: CWE-1025

Exploitation vector: Remote access

Vulnerable software:
The Bouncy Castle Crypto Package For Java

Link to public exploit:

https://github.com/madstap/bouncy-castle-generative-test-poc

Vulnerability description

The vulnerability allows a remote attacker to brute-force password hashes.

The vulnerability exists due to comparison error in OpenBSDBCrypt.checkPassword() function in core/src/main/java/org/bouncycastle/crypto/generators/OpenBSDBCrypt.java when matching passwords with hashes. A remote attacker can pass an incorrect password that will be accepted as a valid one by the library, bypass authentication process and gain unauthorized access to the application that uses vulnerable version of Bouncy Castle.

Remediation

Install updates from vendor's website.

ID:4955 - Exploit for Comparison using wrong factors in The Bouncy Castle Crypto Package For Java - CVE-2020-28052

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human