MD5 checksum hash collision

2014.11.05
Credit: natmchugh
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

This type of collision is has been termed a chosen prefix collision. In this case the image data is the prefix or to be more exact the internal state of the MD5 algorithm after processing the image is. You can't see the added binary data at the end of jpeg images as it is preceded with an End Of Image JPEG marker. Chosen prefix collisions for MD5 were first successfully shown in 2007 in this paper http://www.win.tue.nl/hashclash/ChosenPrefixCollisions/ . The attack uses iterations of differential analysis of MD5. The first successful differential analysis was demonstrated by Xiaoyun Wang in her 2005 paper How to Break MD5 and Other Hash Functions. More: http://natmchugh.blogspot.co.uk/2014/10/how-i-created-two-images-with-same-md5.html

References:

http://natmchugh.blogspot.co.uk/2014/10/how-i-created-two-images-with-same-md5.html
http://seclists.org/oss-sec/2014/q4/529


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top