Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

SSL-TLS Implementations Cipher Block Chaining Padding Information Disclosure Vulnerability

Related Vulnerabilities: CVE-2014-8730   CVE-2014-3566  

A vulnerability in certain implementations of the TLSv1 protocol could allow an unauthenticated, remote attacker to access sensitive information. The vulnerability is due to improper block cipher padding implemented in TLSv1 when using Cipher Block Chaining (CBC) mode. An attacker could exploit the vulnerability to perform an "oracle padding" side channel attack on the cryptographic message. A successful exploit could allow the attacker to access sensitive information. Consult the bug release note for additional information about affected products and configurations. F5 Networks has confirmed the vulnerability in a security advisory and released software updates. Attacks exploiting this vulnerability are identified as Padding Oracle On Downgraded Legacy Encryption (POODLE) attacks, which could be used to disclose HTTP cookies or other HTTP authorization content that is being transmitted over an TLSv1.x secure session. This issue should not be confused with CVE-2014-3566, as described in Cisco Alert 36084. It should be noted that oracle does not refer to the software company of the same name, but to a term used in cryptography. To exploit the vulnerability, the attacker may require access to a trusted, internal network to perform man-in-the-middle attacks on a targeted system. This access requirement limits the likelihood of a successful exploit.

Source

Summary

  • A vulnerability in certain implementations of the TLSv1 protocol could allow an unauthenticated, remote attacker to access sensitive information.

    The vulnerability is due to improper block cipher padding implemented in TLSv1 when using Cipher Block Chaining (CBC) mode. An attacker could exploit the vulnerability to perform an "oracle padding" side channel attack on the cryptographic message. A successful exploit could allow the attacker to access sensitive information.

    Consult the bug release note for additional information about affected products and configurations.

    F5 Networks has confirmed the vulnerability in a security advisory and released software updates.

    Attacks exploiting this vulnerability are identified as Padding Oracle On Downgraded Legacy Encryption (POODLE) attacks, which could be used to disclose HTTP cookies or other HTTP authorization content that is being transmitted over an TLSv1.x secure session. This issue should not be confused with CVE-2014-3566, as described in Cisco Alert 36084.

    It should be noted that oracle does not refer to the software company of the same name, but to a term used in cryptography.

    To exploit the vulnerability, the attacker may require access to a trusted, internal network to perform man-in-the-middle attacks on a targeted system. This access requirement limits the likelihood of a successful exploit.

Affected Products

Workarounds

  • Administrators are advised to apply the appropriate updates.

    Administrators and developers are advised to configure applications to require a minimum of TLS 1.2 with an AEAD cipher for secure communication.

    Administrators are advised to allow only trusted users to have network access.

    Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.

    Administrators are advised to apply Snort SID 32758 to help prevent attacks that attempt to exploit the vulnerability.

    Administrators are advised to monitor affected systems.

Fixed Software

  • F5 Networks has released software updates for registered users at the following link: hotfix releases

    Cisco customers with active contracts can obtain updates through the Software Center at the following link: Cisco. Cisco customers without contracts can obtain upgrades by contacting the Cisco Technical Assistance Center at 1-800-553-2447 or 1-408-526-7209 or via email at tac@cisco.com.

    HP has advised customers to follow the steps in the "Resolution" section of the HP security bulletin.

    IBM has advised customers to follow the remediation steps in the IBM security bulletin to mitigate this vulnerability.

Exploitation and Public Announcements

  • The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

Cisco Security Vulnerability Policy

  • To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Subscribe to Cisco Security Notifications

Action Links for This Advisory

URL

Revision History

  • VersionDescriptionSectionStatusDate
    4.0Cisco has released software and fix information for additional products affected by the SSL-TLS implementations Cipher Block Chaining padding information disclosure vulnerability.NAFinal2015-May-29
    3.0IBM has released a security bulletin and fixes to address the SSL-TLS implementations Cipher Block Chaining padding information disclosure vulnerability.NAFinal2014-Dec-26
    2.0IntelliShield has updated this alert to include Snort signature information. Cisco has released a security notice to address the SSL-TLS implementations Cipher Block Chaining padding information disclosure vulnerability.NAFinal2014-Dec-17
    Show Complete History...

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started