Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

TLS Renegotiation Vulnerability: Proof of Concept Code (Python)

🗓️ 26 Dec 2009 00:00:00Reported by RootType 
seebug
 seebug🔗 www.seebug.org👁 40 Views

TLS Renegotiation Vulnerability: Proof of Concept Code (Python) with "/user/profile/E1/" injectio

Code

                                                I created a Camtasia Movie some time ago "exploiting" the vulnerability
by injecting "/user/profile/E1/" into the first ssl request to "/" 

http://www.hacking-lab.com/download/

This can help others to understand the vulnerability. 


Regards
Ivan



-----Original Message-----
From: Barry Raveendran Greene [mailto:[email protected]] 
Sent: Monday, December 21, 2009 9:16 PM
To: 'RedTeam Pentesting GmbH'; [email protected]
Subject: RE: TLS Renegotiation Vulnerability: Proof of Concept Code
(Python)

Also, can you change this:

"Transport Layer Security (TLS) Renegotiation Indication Extension, IETF
draft standard that addresses the vulnerability."

To:

"Transport Layer Security (TLS) Renegotiation Indication Extension, IETF
TLS
Working Group draft that addresses the vulnerability."

Where "IETF TLS Working Group" is hyperlinked to
http://www.ietf.org/dyn/wg/charter/tls-charter.html

That would help people who do not have a clue who the IETF or the TLS WG
or
that both are open standards forums.

Thanks,

Barry

> -----Original Message-----
> From: RedTeam Pentesting GmbH [mailto:[email protected]]
> Sent: Monday, December 21, 2009 5:04 AM
> To: [email protected]
> Subject: TLS Renegotiation Vulnerability: Proof of Concept Code
> (Python)
> 
> Information about a vulnerability in the TLS protocol was published in
> the
> beginning of November 2009. Attackers can take advantage of that
> vulnerability
> to inject arbitrary prefixes into a network connection protected by
> TLS. This
> can result in severe vulnerabilities, depending on the application
> layer
> protocol used over TLS.
> 
> RedTeam Pentesting used the Python module "TLS Lite" to develop proof
> of concept
> code that exploits this vulnerability. It is published at
> 
> http://www.redteam-pentesting.de/publications/tls-renegotiation
> 
> to raise awareness for the vulnerability and its potential impact.
> Furthermore,
> it shall give interested persons the opportunity to analyse
> applications
> employing TLS for further vulnerabilities.
> 
> --
> RedTeam Pentesting GmbH                    Tel.: +49 241 963-1300
> Dennewartstr. 25-27                        Fax : +49 241 963-1304
> 52068 Aachen                    http://www.redteam-pentesting.de/
> Germany                         Registergericht: Aachen HRB 14004
> Geschäftsführer: Patrick Hof, Jens Liebchen, Claus R. F. Overbeck

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
26 Dec 2009 00:00Current
7.1High risk
Vulners AI Score7.1
tls renegotiation vulnerabilityproof of conceptpythoninjectiontls liteietftls working groupvulnerability awareness
40