SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#120541

SSL and TLS protocols renegotiation vulnerability

Overview

A vulnerability exists in SSL and TLS protocols that may allow attackers to execute an arbitrary HTTP transaction.

I. Description

The Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols are commonly used to provide authentication, encryption, integrity, and non-repudiation services to network applications such as HTTP, IMAP, POP3, LDAP. A vulnerability in the way SSL and TLS protocols allow renegotiation requests may allow an attacker to inject plaintext into an application protocol stream. This could result in a situation where the attacker may be able to issue commands to the server that appear to be coming from a legitimate source. According to the Network Working Group:

The server treats the client's initial TLS handshake as a renegotiation and thus believes that the initial data transmitted by the attacker is from the same entity as the subsequent client data.

This issue affects SSL version 3.0 and newer and TLS version 1.0 and newer.

II. Impact

A remote, unauthenticated attacker may be able to inject an arbitrary amount of chosen plaintext into the beginning of the application protocol stream. This could allow and attacker to issue HTTP requests, or take action impersonating the user, among other consequences.

III. Solution

Users should contact vendors for specific patch information.

Systems Affected

VendorStatusDate NotifiedDate Updated
3com IncUnknown2009-11-052009-11-05
ACCESSUnknown2009-11-052009-11-05
Alcatel-LucentUnknown2009-11-052009-11-05
Apache-SSLUnknown2009-11-052009-11-05
Apache HTTP Server ProjectUnknown2009-11-052009-11-05
Apple Inc.Unknown2009-11-052009-11-05
Aruba Networks, Inc.Unknown2009-11-052009-11-05
AttachmateUnknown2009-11-052009-11-05
AT&TUnknown2009-11-052009-11-05
Avaya, Inc.Unknown2009-11-052009-11-05
Barracuda NetworksVulnerable2009-11-052009-12-17
Belkin, Inc.Unknown2009-11-052009-11-05
Borderware TechnologiesUnknown2009-11-052009-11-05
CerticomUnknown2009-11-052009-11-05
Charlotte's Web NetworksUnknown2009-11-052009-11-05
Check Point Software TechnologiesUnknown2009-11-052009-11-05
Cisco Systems, Inc.Unknown2009-11-052009-11-05
ClavisterUnknown2009-11-052009-11-05
Computer AssociatesUnknown2009-11-052009-11-05
Conectiva Inc.Unknown2009-11-052009-11-05
Cray Inc.Unknown2009-11-052009-11-05
CryptlibNot Vulnerable2009-11-052009-11-11
Crypto++ LibraryUnknown2009-11-052009-11-05
D-Link Systems, Inc.Unknown2009-11-052009-11-05
Debian GNU/LinuxVulnerable2009-11-052009-11-11
DragonFly BSD ProjectUnknown2009-11-052009-11-05
EMC CorporationUnknown2009-11-052009-11-05
Engarde Secure LinuxUnknown2009-11-052009-11-05
Enterasys NetworksUnknown2009-11-052009-11-05
EricssonUnknown2009-11-052009-11-05
eSoft, Inc.Unknown2009-11-052009-11-05
Extreme NetworksUnknown2009-11-052009-11-05
F5 Networks, Inc.Unknown2009-11-052009-11-05
Fedora ProjectUnknown2009-11-052009-11-05
Force10 Networks, Inc.Unknown2009-11-052009-11-05
Fortinet, Inc.Unknown2009-11-052009-11-05
Foundry Networks, Inc.Unknown2009-11-052009-11-05
FreeBSD ProjectUnknown2009-11-052009-11-05
FujitsuUnknown2009-11-052009-11-05
Gentoo LinuxUnknown2009-11-052009-11-05
Global Technology Associates, Inc.Unknown2009-11-052009-11-05
GnuTLSVulnerable2009-11-052009-11-11
Hewlett-Packard CompanyVulnerable2009-11-052009-12-17
HitachiUnknown2009-11-052009-11-05
IBM CorporationVulnerable2009-11-052009-11-11
IBM eServerUnknown2009-11-052009-11-05
InfobloxUnknown2009-11-052009-11-05
Intel CorporationUnknown2009-11-052009-11-05
Internet Security Systems, Inc.Unknown2009-11-052009-11-05
IntotoUnknown2009-11-052009-11-05
IP FilterUnknown2009-11-052009-11-05
IP Infusion, Inc.Unknown2009-11-052009-11-05
Juniper Networks, Inc.Unknown2009-11-052009-11-05
libgcryptNot Vulnerable2009-11-052009-11-11
Lotus SoftwareUnknown2009-11-052009-11-05
Luminous NetworksUnknown2009-11-052009-11-05
m0n0wallUnknown2009-11-052009-11-05
Mandriva S. A.Unknown2009-11-052009-11-05
McAfeeVulnerable2009-11-052009-11-11
Microsoft CorporationUnknown2009-11-052009-11-05
Microsoft Internet ExplorerUnknown2009-11-052009-11-05
Mirapoint, Inc.Unknown2009-11-052009-11-05
mod_sslUnknown2009-11-052009-11-05
MontaVista Software, Inc.Unknown2009-11-052009-11-05
Mozilla - Network Security ServicesUnknown2009-11-052009-11-05
Multitech, Inc.Unknown2009-11-052009-11-05
National Center for Supercomputing ApplicationsUnknown2009-11-052009-11-05
NEC CorporationUnknown2009-11-052009-11-05
NetAppUnknown2009-11-052009-11-05
NetBSDUnknown2009-11-052009-11-05
netfilterUnknown2009-11-052009-11-05
Netscape NSSUnknown2009-11-052009-11-05
NokiaUnknown2009-11-052009-11-05
Nortel Networks, Inc.Unknown2009-11-052009-11-05
Novell, Inc.Unknown2009-11-052009-11-05
OpenBSDUnknown2009-11-052009-11-05
OpenSSLUnknown2009-11-052009-11-05
Openwall GNU/*/LinuxUnknown2009-11-052009-11-05
PePLinkUnknown2009-11-052009-11-05
Process SoftwareUnknown2009-11-052009-11-05
Q1 LabsUnknown2009-11-052009-11-05
QNX Software Systems Inc.Unknown2009-11-052009-11-05
QuaggaUnknown2009-11-052009-11-05
RadWare, Inc.Unknown2009-11-052009-11-05
Red Hat, Inc.Unknown2009-11-052009-11-05
Redback Networks, Inc.Not Vulnerable2009-11-052009-11-11
SafeNetNot Vulnerable2009-11-052009-11-19
Secureworx, Inc.Unknown2009-11-052009-11-05
Silicon Graphics, Inc.Unknown2009-11-052009-11-05
Slackware Linux Inc.Unknown2009-11-052009-11-05
SmoothWallUnknown2009-11-052009-11-05
SnortUnknown2009-11-052009-11-05
Soapstone NetworksUnknown2009-11-052009-11-05
Sony CorporationUnknown2009-11-052009-11-05
SourcefireUnknown2009-11-052009-11-05
SpyrusUnknown2009-11-052009-11-05
StonesoftUnknown2009-11-052009-11-05
StunnelUnknown2009-11-052009-11-05
Sun Microsystems, Inc.Vulnerable2009-11-052009-11-06
SUSE LinuxUnknown2009-11-052009-11-05
SymantecUnknown2009-11-052009-11-05
The SCO GroupUnknown2009-11-052009-11-05
TippingPoint Technologies Inc.Unknown2009-11-052009-11-05
TurbolinuxUnknown2009-11-052009-11-05
UbuntuUnknown2009-11-052009-11-05
UnisysUnknown2009-11-052009-11-05
VMwareUnknown2009-11-052009-11-05
VyattaUnknown2009-11-052009-11-05
Watchguard Technologies, Inc.Unknown2009-11-052009-11-05
Wind River Systems, Inc.Unknown2009-11-052009-11-05
ZyXELUnknown2009-11-052009-11-05

References


http://extendedsubset.com/?p=8
http://www.links.org/?p=780
http://www.links.org/?p=786
http://www.links.org/?p=789
http://blogs.iss.net/archive/sslmitmiscsrf.html
http://www.ietf.org/mail-archive/web/tls/current/msg03948.html
https://bugzilla.redhat.com/show_bug.cgi?id=533125
http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00014.html
http://cvs.openssl.org/chngview?cn=18790
http://www.links.org/files/no-renegotiation-2.patch
http://blog.zoller.lu/2009/11/new-sslv3-tls-vulnerability-mitm.html
https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html

Credit

Thanks to Marsh Ray of PhoneFactor for reporting this vulnerability. This issue was also independently discovered and publicly disclosed by Martin Rex of SAP.

This document was written by Chris Taschner.

Other Information

Date Public:2009-11-05
Date First Published:2009-11-11
Date Last Updated:2009-12-17
CERT Advisory: 
CVE-ID(s):CVE-2009-3555
NVD-ID(s):CVE-2009-3555
US-CERT Technical Alerts: 
Metric:0.00
Document Revision:33

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2009 by US-CERT, a government organization
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader