Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
BID:12223
Info
Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
| Bugtraq ID: | 12223 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 11 2005 12:00AM |
| Updated: | Jan 11 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to Hongjun Wu <[email protected]>. |
| Vulnerable: |
Microsoft Office XP SP3 Microsoft Office XP SP2 Microsoft Office XP SP1 Microsoft Office XP Microsoft Office 2003 SP1 Microsoft Office 2003 0 Microsoft Office 2000 SP3 Microsoft Office 2000 SP2 Microsoft Office 2000 SP1 Microsoft Office 2000 |
| Not Vulnerable: | |
Discussion
Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
Microsoft Office Word and Excel applications are reported prone to a security vulnerability. It is reported that the functionality that provides for password protecting confidential documents is flawed; specifically the RC4 stream cipher that is employed to obfuscate protected documents is implemented incorrectly.
An attacker that can retrieve an original encrypted document and subsequent encrypted modifications of said document may employ cryptanalysis techniques to potentially reveal portions of the target document.
Information gathered by exploiting this vulnerability may be used to aid in further attacks launched against a target victim.
Microsoft Office Word and Excel applications are reported prone to a security vulnerability. It is reported that the functionality that provides for password protecting confidential documents is flawed; specifically the RC4 stream cipher that is employed to obfuscate protected documents is implemented incorrectly.
An attacker that can retrieve an original encrypted document and subsequent encrypted modifications of said document may employ cryptanalysis techniques to potentially reveal portions of the target document.
Information gathered by exploiting this vulnerability may be used to aid in further attacks launched against a target victim.
Exploit / POC
Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Microsoft Office Encrypted Documents RC4 Initialization Vector Implementation Vulnerability
References:
References:
- Technet Security (Microsoft)
- The Misuse of RC4 in Microsoft Word and Excel (Hongjun Wu
) - The Misuse of RC4 in Microsoft Word and Ex (Hongjun Wu
)