SSL: SSL Certificate Signed With MD5 Hash(1)
This signature detects SSL certificates that have been signed using the MD5 hash algorithm. Known weaknesses in the MD5 algorithm allow for certificates signed with it to be spoofed by attackers. The certificate detected by this signature could potentially be illegitimate. All certificates in the signing chain are checked.
Extended Description
mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.
Affected Products
Apache http_server
Short Name
SSL:MD5-SIGNATURE-1
Severity
Minor
Recommended
False
Recommended Action
None
Category
SSL
Keywords
CVE-2003-0543 CVE-2004-0748 CVE-2008-5448 CVE-2016-8027 CVE-2017-10949 CVE-2017-11394 CVE-2017-4997 Certificate Hash(1) MD5 SSL Signed With bid:33065 bid:99169
Release Date
02/09/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Apache
CVSS Score
7.5
10.0
5.0