CVE-2016-1494

MEDIUM LAB

Python-RSA < 3.3 - Signature Spoofing via BERserk Padding Attack

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1494. PoCs published by matthiasbe.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2016-1494, which targets a vulnerability in the RSA PKCS#1 v1.5 signature verification in the Python RSA library. The exploit demonstrates a signature forgery attack by manipulating the cube root of a crafted message to bypass signature validation.

Description

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

Exploits (1)

nomisec WORKING POC 1 stars

by matthiasbe · poc

https://github.com/matthiasbe/secuimag3a

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2016-1494, which targets a vulnerability in the RSA PKCS#1 v1.5 signature verification in the Python RSA library. The exploit demonstrates a signature forgery attack by manipulating the cube root of a crafted message to bypass signature validation.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Python RSA library (rsa-3.2.3)

No auth needed

Prerequisites: Python environment with gmpy2 and RSA library installed

MITRE ATT&CK