Threat Level: green Handler on Duty: Daniel Wesemann

SANS ISC: SSL 2.0 Rollback in OpenSSL SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
SSL 2.0 Rollback in OpenSSL
New versions of OpenSSL have been released today (0.9.7h and 0.9.8a) to address a potential cryptographic weakness.  In servers that have enabled SSL_OP_ALL for compatibility reasons, the session is vulnerable to a potential rollback to SSL 2.0, even in the presence of SSL 3.0 and TLS 1.0, due to the implied SSL_OP_MSIE_SSLV2_RSA_PADDING setting.  Note that SSL 2.0 suffers from several cryptographic vulnerabilities, including allowing an attacker to manipulate the encrypted contents of packets without the possibility of being detected.

This can be solved by either disabling SSL 2.0 entirely on either endpoint, or by upgrading the server software to one of the new OpenSSL versions.

For more information, see:


21 Posts
Oct 11th 2005

Sign Up for Free or Log In to start participating in the conversation!