Oval Definition:oval:org.mitre.oval:def:7158
Revision Date:2014-08-18Version:27
Title:XML Signature HMAC Truncation Authentication Bypass Vulnerability
Description:The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6; (3) Mono before 2.4.2.2; (4) XML Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.0.0.1; (6) Sun JDK and JRE Update 14 and earlier; (7) Microsoft .NET Framework 3.0 through 3.0 SP2, 3.5, and 4.0; and other products uses a parameter that defines an HMAC truncation length (HMACOutputLength) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-0217
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft .NET Framework
Definition Synopsis
  • .NET Framework 1.1 SP1
  • For OS Check
  • Microsoft Windows 2000 is installed
  • OR Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • OR Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND Microsoft .NET Framework 1.1 Service Pack 1 is Installed
  • AND the version of Mscorlib.dll is less than 1.1.4322.2463
  • OR .NET Framework 1.1 Service Pack 1
  • Microsoft Windows Server 2003 (32-bit) is installed
  • AND Microsoft .NET Framework 1.1 Service Pack 1 is Installed
  • AND the version of System.Security.dll is less than 1.1.4322.2460
  • OR .NET Framework 3.5
  • For OS Check
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND Microsoft .NET Framework 3.5 Original Release is installed
  • AND System.web.dll version is less than 2.0.50727.1878
  • OR .NET Framework 2.0 SP2 or 3.5 SP1
  • For OS Check
  • Microsoft Windows 2000 is installed
  • OR Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • OR Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND Check for Microsoft .NET Framework 2.0 Service Pack 2 or 3.5 SP1
  • Microsoft .NET Framework 2.0 Service Pack 2 is installed
  • OR Microsoft .NET Framework 3.5 SP1 is installed
  • AND Check for GDR and LDR versions
  • the version of System.Security.dll is less than 2.0.50727.3613
  • OR Check for LDR version
  • Check if System.Security.dll version is greater than or equal to 2.0.50727.4000
  • AND Check if System.Security.dll version is less than 2.0.50727.4434
  • OR .NET Framework 3.5
  • For OS Check
  • Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • AND Microsoft .NET Framework 3.5 Original Release is installed
  • AND the version of System.Security.dll is less than 2.0.50727.1879
  • OR .NET Framework 3.5 SP1 on Vista x86/x64, Windows Server 2008 x86/x64/ia64
  • For OS Check
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND Microsoft .NET Framework 3.5 SP1 is installed
  • AND Check for GDR and LDR versions
  • the version of system.security.dll is less than 2.0.50727.4204
  • OR Check for LDR versions
  • Check if System.Security.dll version is greater than or equal to 2.0.50727.4300
  • AND Check if System.Security.dll version is less than 2.0.50727.4434
  • OR Microsoft .NET Framework 3.5.1 on Windows 7 x86/x64, Server 2008 R2 x64/ia64
  • For OS Check
  • Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed
  • AND Microsoft .NET Framework 3.5 SP1 is installed
  • AND Check for GDR and LDR versions
  • the version of system.security.dll is less than 2.0.50727.4951
  • OR Check for LDR versions
  • Check if System.Security.dll version is greater than or equal to 2.0.50727.5000
  • AND Check if system.security.dll version is less than 2.0.50727.5007
    • BACK