CurveBall Microsoft Windows CryptoAPI Spoofing Proof Of Concept

Posted by deepcore on January 17, 2020 – 12:58 am

Proof of concept exploit for the Microsoft Windows CurveBall vulnerability where the signature of certificates using elliptic curve cryptography (ECC) is not correctly verified. ECC relies on different parameters. These parameters are standardized for many curves. However, Microsoft did not check all these parameters. The parameter G (the generator) was not checked, and the attacker can therefore supply his own generator, such that when Microsoft tries to validate the certificate against a trusted CA, it will only look for matching public keys, and then use then use the generator of the certificate.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Jenkins Gitlab Hook 1.4.2 Cross Site Scripting CurveBall Microsoft Windows CryptoAPI Spoofing Proof Of Concept »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

CurveBall Microsoft Windows CryptoAPI Spoofing Proof Of Concept

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL