Critical severity9.8NVD Advisory· Published Jan 5, 2009· Updated Jun 16, 2026
CVE-2004-2761
CVE-2004-2761
Description
The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
26- www.microsoft.com/technet/security/advisory/961509.mspxnvdMitigationPatchVendor Advisory
- www.kb.cert.org/vuls/id/836068nvdThird Party AdvisoryUS Government Resource
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- blog.mozilla.com/security/2008/12/30/md5-weaknesses-could-lead-to-certificate-forgery/nvd
- blogs.technet.com/swi/archive/2008/12/30/information-regarding-md5-collisions-problem.aspxnvd
- secunia.com/advisories/33826nvd
- secunia.com/advisories/34281nvd
- secunia.com/advisories/42181nvd
- securityreason.com/securityalert/4866nvd
- securitytracker.com/idnvd
- www.cisco.com/en/US/products/products_security_response09186a0080a5d24a.htmlnvd
- www.doxpara.com/research/md5/md5_someday.pdfnvd
- www.phreedom.org/research/rogue-ca/nvd
- www.securityfocus.com/archive/1/499685/100/0/threadednvd
- www.securityfocus.com/bid/33065nvd
- www.ubuntu.com/usn/usn-740-1nvd
- www.win.tue.nl/hashclash/SoftIntCodeSign/nvd
- www.win.tue.nl/hashclash/rogue-ca/nvd
- blogs.verisign.com/ssl-blog/2008/12/on_md5_vulnerabilities_and_mit.phpnvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- ics-cert.us-cert.gov/advisories/ICSMA-18-058-02nvd
- rhn.redhat.com/errata/RHSA-2010-0837.htmlnvd
- rhn.redhat.com/errata/RHSA-2010-0838.htmlnvd
- support.hpe.com/hpsc/doc/public/displaynvd
- www.redhat.com/archives/fedora-package-announce/2009-February/msg00096.htmlnvd
News mentions
0No linked articles in our index yet.