漏洞类别:General remote services
漏洞等级: 
漏洞信息
Legacy block ciphers having block size of 64 bits are vulnerable to a practical collision attack when used in CBC mode. All versions of SSL/TLS protocol support cipher suites which use DES or 3DES as the symmetric encryption cipher are affected.
漏洞危害
Remote attackers can obtain cleartext data via a birthday attack against a long-duration encrypted session.
解决方案
Disable and stop using DES and 3DES ciphers.
上一篇:CVE-2017-3792
0day
文章评论