IBM HTTP Server SSL/TLS RC4 Stream Cipher Key Invariance (Bar Mitzvah)
Low Nessus Plugin ID 87538
SynopsisThe remote web server is affected by a security feature bypass vulnerability.
DescriptionAccording to its banner, the version of IBM HTTP Server running on the remote host is affected by a security feature bypass vulnerability, known as Bar Mitzvah, due to improper combination of state data with key data by the RC4 cipher algorithm during the initialization phase.
A man-in-the-middle attacker can exploit this, via a brute-force attack using LSB values, to decrypt the traffic.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionUpgrade to IBM HTTP Server 126.96.36.199 / 188.8.131.52 / or 184.108.40.206 or later.