CVE-2007-3108

CVE-2007-3108 · LOW Severity

AV:L/AC:H/AU:N/C:P/I:N/A:N

The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.

Learn more about our User Device Pen Test.