Timing Vulnerability in Botan's PKCS#1 Padding Decoding

Timing Vulnerability in Botan's PKCS#1 Padding Decoding

CVE-2015-7827 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct million-message attacks by measuring time differences, related to decoding of PKCS#1 padding.

Learn more about our Web Application Penetration Testing UK.