CVE-2023-39969
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-39969 is a vulnerability affecting version 1.0.9 of the uthenticode library. This cross-platform software is used for partially verifying Authenticode digital signatures. The issue arises from the library hashing the entire file instead of specific sections by virtual address, which goes against Authenticode's specifications. An attacker can exploit this vulnerability by modifying code within a binary without changing its Authenticode hash, making it appear valid to uthenticode. The 2.x series of the library addresses this issue, and users are encouraged to upgrade. Versions prior to 1.0.9 and those in the 2.x series are not vulnerable. There are no workarounds for this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Trail of Bits