Bleichenbacher-Vulnerability/EN
Version vom 4. Juli 2018, 12:57 Uhr von Siwebot (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „=== <span style="color:#c31622">{{:{{PAGENAME}}/Headline}}<span>=== {| class="wikitable" |'''Check'''|| {{:{{PAGENAME}}/Negative}} |- |'''Beschreibung'''…“)
Check for Bleichenbacher vulnerability
Check | Vulnerable to Bleichenbacher (ROBOT). |
Beschreibung | The server is vulnerable to a Bleichenbacher attack. Communication can be decrypted and user entries such as passwords can be read. |
Hintergrund | The so-called Bleichenbacher attack (also known under the name ROBOT) is a 19 year old security flaw that allows RSA decryption and signature operations to be performed with the private key of a TLS server. The attack is an error in the program code. |
Auswirkung | The server is vulnerable through a security flaw that allows an attacker to decrypt the communication. |
Lösung / Tipps | If vulnerability has been reported, immediately install an update for your TLS Implementation on your server. |
[[Category: ]]