Prevent CCS injection attacks

The server is vulnerable to CCS injections. Malicious intermediate nodes can intercept encrypted data and decrypt it by forcing SSL clients to use a weak key.

Security assessment

Security_Assessment_PreventCSSInjection

CVSS vector: AV:N/AC:M/AU:N/C:P/I:P/A:P

Vulnerability information

The server is vulnerable to CCS Injections. Malicious intermediate nodes can intercept encrypted data and decrypt it by forcing SSL clients to use a weak key.

Prevent attacks

Update OpenSSL to the latest version. The following versions are known to prevent CCS injections:

OpenSSL 1.0.1h
OpenSSL 1.0.0m
OpenSSL 0.9.8za

E.g., run:

apt-get update; apt-get upgrade # Debian / Ubuntu  
yum update                      # RHeL / CentOS  
pacman -Syu                     # Arch Linux

Security assessment​

Vulnerability information​

Prevent attacks​

Security assessment

Vulnerability information

Prevent attacks