Synopsis
The remote host allows resuming SSL sessions with a weaker cipher than the one originally negotiated.
Description
The version of OpenSSL on the remote host has been shown to allow resuming session with a weaker cipher than was used when the session was initiated. This means that an attacker that sees (i.e., by sniffing) the start of an SSL connection can manipulate the OpenSSL session cache to cause subsequent resumptions of that session to use a weaker cipher chosen by the attacker.
Note that other SSL implementations may also be affected by this vulnerability.
See Also
http://openssl.org/news/secadv_20101202.txt
Solution
Upgrade to OpenSSL 0.9.8q / 1.0.0.c or later, or contact your vendor for a patch.
Risk Factor
MediumCVSS Base Score
4.3 (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)CVSS Temporal Score
3.7 (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)References
BID 45164 CVE CVE-2010-4180 XREF OSVDB:69565Plugin Information:
Publication date: 2011/02/07, Modification date: 2014/01/27
Ports
tcp/443
The server allowed the following session over SSLv3 to be resumed as follows : Session ID : cce215ab87816ab4a49e44f13c0e3758723bb4fb20519bf1d93c5b644c6108b0 Initial Cipher : TLS1_CK_DHE_RSA_WITH_AES_256_CBC_SHA (0x0039)
The server allowed the following session over TLSv1 to be resumed as follows : Session ID : e82e96b09a4c83455e4fb78e0f04fcf61d668c24053c9ebba4f87ea00d15bcbd Initial Cipher : TLS1_CK_DHE_RSA_WITH_AES_256_CBC_SHA (0x0039)
Resumed Cipher : TLS1_CK_RSA_EXPORT_WITH_DES40_CBC_SHA (0x0008)
65821 - SSL RC4 Cipher Suites Supported
Synopsis
The remote service supports the use of the RC4 cipher.
Description
The remote host supports the use of RC4 in one or more cipher suites.
The RC4 cipher is flawed in its generation of a pseudo-random stream of bytes so that a wide variety of small biases are introduced into the stream, decreasing its randomness.
If plaintext is repeatedly encrypted (e.g. HTTP cookies), and an attacker is able to obtain many (i.e. tens of millions) ciphertexts, the attacker may be able to derive the plaintext.
See Also
http://www.nessus.org/u?217a3666 http://cr.yp.to/talks/2013.03.12/slides.pdf http://www.isg.rhul.ac.uk/tls/
Solution
Reconfigure the affected application, if possible, to avoid use of RC4 ciphers. Consider using TLS 1.2 with AES-GCM suites subject to browser and web server support.
Risk Factor
LowCVSS Base Score
2.6 (CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N)CVSS Temporal Score
2.3 (CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N)References
BID 58796 CVE CVE-2013-2566 XREF OSVDB:91162Plugin Information:
Publication date: 2013/04/05, Modification date: 2014/02/27
Ports
tcp/443
Here is the list of RC4 cipher suites supported by the remote server : Low Strength Ciphers (< 56-bit key)
SSLv2
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
SSLv3
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
TLSv1
EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
SSLv2
RC4-64-MD5 Kx=RSA Au=RSA Enc=RC4(64) Mac=MD5 High Strength Ciphers (>= 112-bit key)
SSLv2
RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 SSLv3
RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 RC4-SHA Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1 TLSv1
RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 RC4-SHA Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1 The fields above are :
{OpenSSL ciphername} Kx={key exchange} Au={authentication}
Enc={symmetric encryption method} Mac={message authentication code} {export flag}
11219 - Nessus SYN scanner
Synopsis
It is possible to determine which TCP ports are open.
Description
This plugin is a SYN 'half-open' port scanner. It shall be reasonably quick even against a firewalled target.
Note that SYN scans are less intrusive than TCP (full connect) scans against broken services, but they might cause problems for less robust firewalls and also leave unclosed connections on the remote target, if the network is loaded.
Solution
Protect your target with an IP filter.
Risk Factor
None
Plugin Information:
Publication date: 2009/02/04, Modification date: 2014/01/23
Ports
tcp/443
Port 443/tcp was found to be open
22964 - Service Detection
Synopsis
The remote service could be identified.
Description
It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request.
Solution
n/aRisk Factor
NonePlugin Information:
Publication date: 2007/08/19, Modification date: 2014/04/15
Ports
tcp/443
A TLSv1 server answered on this port.
A web server is running on this port through TLSv1.
22964 - Service Detection
Synopsis
The remote service could be identified.
Description
It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request.
Solution
n/aRisk Factor
NonePlugin Information:
Publication date: 2007/08/19, Modification date: 2014/04/15
Ports
tcp/443
A TLSv1 server answered on this port.
tcp/443
A web server is running on this port through TLSv1.
56984 - SSL / TLS Versions Supported
Synopsis
The remote service encrypts communications.
Description
This script detects which SSL and TLS versions are supported by the remote service for encrypting communications.
Solution
n/a
Risk Factor
None
Plugin Information:
Publication date: 2011/12/01, Modification date: 2014/04/14
Ports
tcp/443
This port supports SSLv2/SSLv3/TLSv1.0.
10863 - SSL Certificate Information
Synopsis
This plugin displays the SSL certificate.
Description
This plugin connects to every SSL-related port and attempts to extract and dump the X.509 certificate.
Solution
n/a
Risk Factor
None
Plugin Information:
Publication date: 2008/05/19, Modification date: 2012/04/02
Ports
tcp/443
Country: --
State/Province: SomeState Locality: SomeCity
Organization: SomeOrganization
Organization Unit: SomeOrganizationalUnit Common Name: localhost.localdomain Email Address: [email protected] Issuer Name:
Country: --
State/Province: SomeState Locality: SomeCity
Organization: SomeOrganization
Organization Unit: SomeOrganizationalUnit Common Name: localhost.localdomain Email Address: [email protected] Serial Number: 00
Version: 3
Signature Algorithm: MD5 With RSA Encryption Not Valid Before: Oct 08 00:10:47 2009 GMT Not Valid After: Oct 08 00:10:47 2010 GMT Public Key Info:
Algorithm: RSA Encryption Key Length: 1024 bits
Public Key: 00 DE 1D B8 D5 44 AF 86 8B 4D 47 EC 8D A7 17 29 C0 9A 46 CD 68 4F 1B 1D 35 32 31 92 9E D2 57 63 C3 0F E9 81 63 9B 21 B1 7B 7F 14 C1 BB 52 97 F8 83 AD 39 F9 6E 99 12 17 C1 5A 92 D7 A2 70 C5 69 12 31 C6 7E 00 19 23 8B 83 CA B6 D2 45 2D F6 9D 87 66 E7 DA 48 B4 B0 7D 2C 09 F8 24 CC C1 8B 4D F0 05 34 8E 17 F7 AF 4C BC 8E BF A3 8C 45 34 1D 3E 0E E1 85 DC 9C 34 6F 6C 85 1E 1C A7 9D 3C FB 13 Exponent: 01 00 01
Signature Length: 128 bytes / 1024 bits
Signature: 00 1E FA BB 28 F7 94 4E 7D FA 4B 3F C0 BB DE 53 98 2E DA 4A 48 48 90 65 47 31 11 A1 59 EE CA 4C 47 E5 A9 07 DF 61 3A 89 39 2E 31 B2 EF C5 C4 34 72 F4 81 8E 6A 9B 32 20 B1 84 C7 9E DA A6 E0 98 25 6D ED A7 03 14 AE 95 17 BB FC 7D 83 72 CC F9 58 21 88 7D 17 C4 C3 9F 6E E7 95 86 A5 99 FB 23 FC 2E 2B 11 3A BE 6E F8 57 86 38 10 48 20 D0 26 A5 65 17 DB 11 1D 07 8A 7D ED 66 33 3F 4D EB 11 05
Extension: Subject Key Identifier (2.5.29.14) Critical: 0
Subject Key Identifier: 40 0B 3E 3B 0A 99 21 8B 16 0A 54 36 64 16 AF DA E3 CF FE 60
Extension: Authority Key Identifier (2.5.29.35) Critical: 0
Key Identifier: 40 0B 3E 3B 0A 99 21 8B 16 0A 54 36 64 16 AF DA E3 CF FE 60 Serial Number: 82 01 00
Extension: Basic Constraints (2.5.29.19) Critical: [...]