CVE-2017-1000385 (retired)

Priority
Description
The Erlang otp TLS server answers with different TLS alerts to different
error types in the RSA PKCS #1 1.5 padding. This allows an attacker to
decrypt content or sign messages with the server's private key (this is a
variation of the Bleichenbacher attack).
Assigned-to
mdeslaur
More Information

Updated: 2019-03-26 12:24:17 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)