SSL / TLS Renegotiation DoS

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.

Synopsis :

The remote service allows repeated renegotiation of TLS / SSL

Description :

The remote service encrypts traffic using TLS / SSL and permits
clients to renegotiate connections. The computational requirements
for renegotiating a connection are asymmetrical between the client and
the server, with the server performing several times more work. Since
the remote host does not appear to limit the number of renegotiations
for a single TLS / SSL connection, this permits a client to open
several simultaneous connections and repeatedly renegotiate them,
possibly leading to a denial of service condition.

See also :

Solution :

Contact the vendor for specific patch information.

Risk factor :

Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.9
Public Exploit Available : true

Family: General

Nessus Plugin ID: 53491 ()

Bugtraq ID: 48626

CVE ID: CVE-2011-1473

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now