#VU11223 Brute-force attack in The Bouncy Castle Crypto Package For Java


Published: 2018-03-22

Vulnerability identifier: #VU11223

Vulnerability risk: Low

CVSSv3.1: 3 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2018-5382

CWE-ID: CWE-264

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
The Bouncy Castle Crypto Package For Java
Universal components / Libraries / Libraries used by multiple products

Vendor: Legion of the Bouncy Castle Inc.

Description
The vulnerability allows a local attacker to cobtain potentially sensitive information on the target system.

The weakness exists due to a design error when determining the size of the to be used to protect data inside of a keystore. A local attacker can gain access to a BKSv1 keystore file, bypass security restrictions and conduct brute-force attack.

Mitigation
Update to version 1.47 or later.

Vulnerable software versions

The Bouncy Castle Crypto Package For Java: 1.0 - 1.46


External links
http://www.kb.cert.org/vuls/id/306792


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability