SSL Certificate Chain Contains Illegitimate TURKTRUST Intermediate CA

This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.

Synopsis :

The SSL certificate chain for this service is not to be trusted.

Description :

The X.509 certificate chain sent by the remote host either contains or
is signed by an intermediate Certificate Authority (CA) that was
accidentally issued by TURKTRUST.

Certificate chains descending from this intermediate CA could allow an
attacker to perform man-in-the-middle attacks and decode traffic.

See also :

Solution :

Ensure that your software or operating system blacklists the
intermediate CAs.

Risk factor :

Medium / CVSS Base Score : 4.0

Family: General

Nessus Plugin ID: 63398 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now