Signature Detail

SSL: SSLv2 Traffic Identified

This signature detects SSLv2 traffic over the network. It is a legacy protocol and its usage is discouraged.

Extended Description

The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a "DROWN" attack.

Affected Products

• Openssl openssl 1.0.1
• Openssl openssl 1.0.1a
• Openssl openssl 1.0.1b
• Openssl openssl 1.0.1c
• Openssl openssl 1.0.1d
• Openssl openssl 1.0.1e
• Openssl openssl 1.0.1f
• Openssl openssl 1.0.1g
• Openssl openssl 1.0.1h
• Openssl openssl 1.0.1i
• Openssl openssl 1.0.1j
• Openssl openssl 1.0.1k
• Openssl openssl 1.0.1l
• Openssl openssl 1.0.1m
• Openssl openssl 1.0.1n
• Openssl openssl 1.0.1o
• Openssl openssl 1.0.1p
• Openssl openssl 1.0.1q
• Openssl openssl 1.0.1r
• Openssl openssl 1.0.2
• Openssl openssl 1.0.2a
• Openssl openssl 1.0.2b
• Openssl openssl 1.0.2c
• Openssl openssl 1.0.2d
• Openssl openssl 1.0.2e
• Openssl openssl 1.0.2f
• Pulsesecure client -
• Pulsesecure steel_belted_radius -

References

• CVE: CVE-2016-0800
• URL: https://datatracker.ietf.org/doc/rfc6176/
• URL: https://drownattack.com/