SSLv2 Client Connection Surge

medium Nessus Network Monitor Plugin ID 7184
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

An influx of SSLv2 Client requests were initiated from this host.

Description

PVS has observed a surge in SSLv2 connection requests from this client.

Solution

Manually inspect the system. Repeated SSLv2 connection attempts may be considered malicious.

Plugin Details

Severity: Medium

ID: 7184

Version: 1.4

Family: Policy

Published: 3/7/2016

Updated: 8/16/2018