SSL Certificate Chain Contains Illegitimate TURKTRUST Intermediate CA

This script is Copyright (C) 2013 Tenable Network Security, Inc.

Synopsis :

The SSL certificate chain for this service is not to be trusted.

Description :

The X.509 certificate chain sent by the remote host either contains or
is signed by an intermediate Certificate Authority (CA) that was
accidentally issued by TURKTRUST.

Certificate chains descending from this intermediate CA could allow an
attacker to perform man-in-the-middle attacks and decode traffic.

See also :

Solution :

Ensure that your software or operating system blacklists the
intermediate CAs.

Risk factor :

Medium / CVSS Base Score : 4.0

Family: General

Nessus Plugin ID: 63398 ()

Bugtraq ID:


Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial