NASLDB: SSL Server Accepts Weak Diffie-Hellman Keys
General
ID: 53360
Name: SSL Server Accepts Weak Diffie-Hellman Keys
Summary: Checks if remote SSL/TLS server accepts Diffie-Hellman public value of 1.
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: –
CVSS Temporal Vector: –
Port: –
Family: General
Type: Remote
Description
The remote SSL/TLS server accepts a weak Diffie-Hellman (DH) public
key value.
This flaw may aid an attacker in conducting a man-in-the-middle (MiTM)
attack against the remote server since it could enable a forced
calculation of a fully predictable Diffie-Hellman secret.
By itself, this flaw is not sufficient to set up a MiTM attack (hence
a risk factor of ‘none’), as it would require some SSL implementation
flaws to affect one of the clients connecting to the remote host.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2011-1923
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2011/02/25
Patch Release: –
Plugin Release: 2011/04/11
Plugin
Version: 1.22
Filename: polarssl_dh_vuln.nasl
Filesize: 11742 bytes
MD5 Hash: bdda66c72a68b41d20979a76dee74415
Identification: –
Require Keys: SSL/Supported
Dependencies: "ssl_supported_versions.nasl"
Copyright: This script is Copyright© 2011-2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack