-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bulletin PSN-2005-12-025 Title: IVE potential SSL 2.0 rollback Products Affected: IVE software is vulnerable in versions up to and including 4.2R6, 5.0R5 and 5.1R3 Platforms Affected: IVE OS 5.x IVE OS 3.x IVE OS 1.x IVE OS 4.x IVE OS 2.x Revision Number: 1 Issue Date: 2005-12-08 - ---------------------------------------------------------------------- PSN Issue: In order to provide bug-for-bug compatibility with Microsoft Internet Explorer 3.02, a verification step required by the Secure Sockets Layer protocol can be disabled by using the SSL_OP_MSIE_SSLV2_RSA_PADDING option in OpenSSL. This option is implied by the frequently-used SSL_OP_ALL option. - ---------------------------------------------------------------------- Solution: If the SSL_OP_MSIE_SSLV2_RSA_PADDING option is enabled in a server application using OpenSSL, an attacker who is able to intercept and tamper with packets transmitted between a client and the server can cause the protocol version negotiation to result in SSLv2 being used even when both the client and the server support SSLv3. Due to a number of documented weaknesses in the SSLv2 protocol, this may allow the attacker to read or tamper with the encrypted data being sent. Solution Implementation: IVE software has received a fix that disables SSL 2.0 compatibility. Please note that when applied, this fix might break compatibility with IE 3.02 and prior versions. Enhancement available in the following releases: * 4.2R7 * 5.0R6 * 5.1R4 Status: FINAL RELEASE Disclaimer: Juniper Networks is providing this notice on an "AS IS" basis. No warranty or guarantee of any kind is expressed in this notice and none should be implied. Juniper Networks expressly excludes and disclaims any warranties regarding this notice or materials referred to in this notice, including, without limitation, any implied warranty of merchantability, fitness for a particular purpose, absence of hidden defects, or of noninfringement. Your use or reliance on this notice or materials referred to in this notice is at your own risk. Juniper Networks may change this notice at any time. - ---------------------------------------------------------------------- Related Links: FreeBSD-SA-05:21.openssl - Potential SSL 2.0 rollback (CAN-2005-2969) Audience: For Public Disclosure Alert Type: Product Support Notification Risk Level: Low Risk Assessment: This attack requires access to in flow traffic making it fairly difficult to execute in real world. Created Date: 2005-12-20 18:06:34.0 Last Modified Date: 2005-12-20 18:06:34.0 - ---------------------------------------------------------------------- Copyright (c) 1998-2005, Juniper Networks, Inc. All Rights Reserved -----BEGIN PGP SIGNATURE----- Version: PGP 8.1 iQA/AwUBQ6n1dwJw4nLp1sbREQI61wCfVnTuWMZxwdR/2uwoHuZW+PNQT5QAoNLF z4DraAB9wB8Hu+GoUNMBa0pn =fg2p -----END PGP SIGNATURE-----