cvelist/2007/6xxx/CVE-2007-6721.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-6721",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "The Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Crypto Provider Package before 1.36, has unknown impact and remote attack vectors related to \"a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes.\""
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "http://freshmeat.net/projects/bouncycastlecryptoapi/releases/265580",
                "refsource": "CONFIRM",
                "url": "http://freshmeat.net/projects/bouncycastlecryptoapi/releases/265580"
            },
            {
                "name": "50358",
                "refsource": "OSVDB",
                "url": "http://www.osvdb.org/50358"
            },
            {
                "name": "http://www.bouncycastle.org/csharp/",
                "refsource": "CONFIRM",
                "url": "http://www.bouncycastle.org/csharp/"
            },
            {
                "name": "50360",
                "refsource": "OSVDB",
                "url": "http://www.osvdb.org/50360"
            },
            {
                "name": "http://www.bouncycastle.org/releasenotes.html",
                "refsource": "CONFIRM",
                "url": "http://www.bouncycastle.org/releasenotes.html"
            },
            {
                "name": "50359",
                "refsource": "OSVDB",
                "url": "http://www.osvdb.org/50359"
            },
            {
                "name": "[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available",
                "refsource": "MLIST",
                "url": "http://www.bouncycastle.org/devmailarchive/msg08195.html"
            }
        ]
    }
}