Reset Search
 

 

Article

SSL Certificate Null Character Spoofing Weakness

« Go Back

Information

 
TitleSSL Certificate Null Character Spoofing Weakness
Symptoms
"SSL Certificate Null Character Spoofing Weakness"
Environment
  • VSP 7254
  • SW 6.1.2.0
Cause
The remote host contains an SSL certificate with a common name containing a Null character (\x00) in it.
Resolution
The resolution is to rename the files. Type in the command copy.

For example, the following command is for renaming the cert.der file to cert.derold ...
Copy /intlfash/.cert/.ssl/cert.der /intlfash/.cert/.ssl/cert.derold 
Additional notes
This may indicate a compromise or that a program such as SSLsniff is spoofing the certificate in order to intercept the traffic via a Man-in-The-Middle (MiTM) attack. Certificates with such characters may exploit a bug contained in many different web browser and other SSL-related products, in how they validate the common name of such a certificate. 

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255