A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html | Third Party Advisory VDB Entry |
http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2020-01-14T23:11:20
Updated: 2020-01-16T17:06:04
Reserved: 2019-11-04T00:00:00
Link: CVE-2020-0601
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-14T23:15:30.207
Modified: 2022-08-12T18:40:31.113
Link: CVE-2020-0601
JSON object: View
Redhat Information
No data.
CWE