Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
OpenSSL 'Diffie-Hellman small subgroups' MitM Attack Vulnerability (Windows)
Information
Severity
Severity
Low
Family
Family
General
CVSSv2 Base
CVSSv2 Base
2.6
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:H/Au:N/C:P/I:N/A:N
Solution Type
Solution Type
Vendor Patch
Created
Created
8 years ago
Modified
Modified
5 years ago
Summary
This host is running OpenSSL and is prone to man-in-the-middle (MitM) attack vulnerability.
Insight
Insight
The flaw exists as the primes used in X9.42 style parameter files may not be safe. When an application is using Diffie-Hellman configured with parameters based on primes that are not safe then an attacker could use this fact to find a peer's private DH exponent.
Affected Software
Affected Software
OpenSSL versions 1.0.2x before 1.0.2f on Windows.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Upgrade to OpenSSL 1.0.2f or later.