SSL Revoked Certificate Detection

Critical Nessus Network Monitor Plugin ID 5839


The remote host has been compromised and is running a 'Backdoor' program


The remote SSL server is using a certificate which has been revoked. The particular SSL certificate has a serial number of '\xd7\x55\x8f\xda\xf5\xf1\x10\x5b\xb2\x13\x28\x2b\x70\x77\x29\xa3' and an Issuer of USERTRUST.


There is a high probability that your server has been compromised. You should manually inspect and fix this system.

See Also

Plugin Details

Severity: Critical

ID: 5839

File Name: 5839.prm

Family: Backdoors

Published: 2011/03/23

Modified: 2016/01/15

Dependencies: 5620

Risk Information

Risk Factor: Critical