[Outofthebox] Fw: more MD5 colliding examples

Angelo Dell'Aera buffer at olografix.org
Sun Dec 4 21:46:14 CET 2005 


Forwardo il lista per gli interessati. Per coloro che volessero
approfondire il discorso non consiglio di vedere le presentazioni di
gera (che gia' era andato di testa ai tempi di Insecure Programming 
a mio modesto parere :P) ma di fare riferimento a questo URL

http://www.stachliu.com/collisions.html

Il vostro moderatore preferito,

-- 

Angelo Dell'Aera 'buffer' 
Antifork Research, Inc.	  	http://buffer.antifork.org
Metro Olografix

PGP information in e-mail header





Begin forwarded message:

Date: Fri, 02 Dec 2005 19:55:35 -0300
From: Gerardo Richarte <gera a corest.com>
To: binaryanalysis a securityfocus.com
Subject: more MD5 colliding examples


hello everybody, last month we presented in a lightning talk at PacSec a
few interesting and somehow new things related to MD5 collisions: 2
different Win32 .EXE files with the same MD5 hash, and 4 different files
(inputs) with the same MD5 hash.

These are direct results of reimplementing the already known attacks on
MD5, specifically abusing the fact that collisions can be generated for
arbitrary IVs.

Today we are releasing some new stuff:

	- The 4 colliding files have been increased to 8 files (there is
no real limit in the number of colliding files which can be generated,
this is just an example of what can be done).

	- Two new Win32 .EXE files, this time with the same MD5 hash and
also the same CRC32, the same checksum 32 and the same checksum 16.

Of course all this is no big theoretical breakthrough, but it's somehow
interesting to have examples to show to the incredulous.

All the information (the files and presentation explaining how to
regenerate the files) from PacSec is now available at
http://www.corest.com/corelabs/projects/research_topics.php.

	have fun!
	gera






-------------- parte successiva --------------
Un allegato non testuale è stato rimosso....
Nome:        non disponibile
Tipo:        application/pgp-signature
Dimensione:  189 bytes
Descrizione: non disponibile
Url:         https://www.olografix.org/pipermail/outofthebox/attachments/20051204/e1ca93fe/attachment.bin

More information about the Outofthebox mailing list