[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <b768cbc4479f5a7aea6c5c0239665bda@smtp.hushmail.com>
Date: Sat, 26 Jan 2013 18:25:56 +0100
From: magnum <john.magnum@...hmail.com>
To: john-dev@...ts.openwall.com
Subject: Re: Office format bug
On 01/26/2013 04:08 PM, Dhiru Kholia wrote:
> On Sat, Jan 26, 2013 at 7:51 PM, Dhiru Kholia <dhiru.kholia@...il.com> wrote:
>> This is a genuine problem and here is a patch to fix this.
>>
>> diff --git a/src/office_fmt_plug.c b/src/office_fmt_plug.c
>> index f4f9b19..7131893 100644
>> --- a/src/office_fmt_plug.c
>> +++ b/src/office_fmt_plug.c
>> @@ -190,7 +190,6 @@ static int PasswordVerifier(unsigned char * key)
>> return 0;
>> }
>> AES_ecb_encrypt(cur_salt->encryptedVerifierHash,
>> decryptedVerifierHash, &akey, AES_DECRYPT);
>> - AES_ecb_encrypt(cur_salt->encryptedVerifierHash+16,
>> decryptedVerifierHash+16, &akey, AES_DECRYPT);
>>
>> /* find SHA1 hash of decryptedVerifier */
>> SHA1_Init(&ctx);
>
> Same fix applies for opencl_office2007_fmt.c as well.
>
We'll need to patch the OpenCL formats as well. Did this bug not affect
cracking?
magnum
Powered by blists - more mailing lists
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
