LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Is the RFC5746 vulnerability exploitable?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 11-23-2011, 01:35 AM   #1
hydraMax
Member
 
Registered: Jul 2010
Location: Skynet
Distribution: Debian + Emacs
Posts: 467
Blog Entries: 60

Rep: Reputation: 51
Is the RFC5746 vulnerability exploitable?

I've been reading through Oppliger's "SSL and TLS: Theory and Practice" and am finding it all rather fascinating. Anyway, I was curious about this known vulnerability, referenced in RFC5746:

http://tools.ietf.org/html/rfc5746

I also found this Mozilla document released a year or so ago:

https://wiki.mozilla.org/Security:Renegotiation

In it they lament about the fact that this known vulnerability (concerning SSL/TLS negotiation) has an available fix, but almost none of the major Web sites utilizing HTTPS have implemented it on their servers. I reactivated the fail safes and warning built into Firefox (which are now disabled by default), and discovered that both my on-line banking application and my favorite e-commerce site are not using the updated renegotiation extension.

So, naturally I am curious: Have hackers (crackers) ever exploited this vulnerability? Is it practically possible for them to do so? How hard would it be?
Last edited by hydraMax; 11-23-2011 at 01:36 AM.
 
Old 11-23-2011, 09:07 PM   #2
neonsignal
Senior Member
 
Registered: Jan 2005
Location: Melbourne, Australia
Distribution: Debian Bookworm (Fluxbox WM)
Posts: 1,391
Blog Entries: 54

Rep: Reputation: 360Reputation: 360Reputation: 360Reputation: 360
The drawback with the method is that it also depends on vulnerable features of the application layer running above the SSL layer. This means that many applications might not have a useful exploit.

There have been demonstrated exploits; for example, the researcher Anil Kurmus showed how it could be used by a man-in-the-middle to grab a twitter update.
 
1 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
strcpy not exploitable? jazzmo Linux - Security 5 08-24-2011 12:59 PM
LXer: Quickly check for potential root-exploitable programs and backdoors. LXer Syndicated Linux News 0 10-31-2007 01:50 PM
PHP vulnerability glj Linux - Security 3 03-02-2002 05:47 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:43 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration