Ssl Tls Server Vulnerable To Freak Attacks

Description

Detects if a web server is vulnerable to FREAK (Factoring RSA Export Keys) attacks by testing for support of weak export-grade RSA cipher suites. FREAK attacks allow attackers to downgrade the connection to use weak export-grade cryptography, potentially enabling decryption of TLS connections.

Weakness:

016 - Insecure encryption algorithm - SSL/TLS

Category: Information Collection

Detection Strategy

• Attempts to establish SSL/TLS connections using weak export-grade cipher suites (including RSA_EXPORT, DHE_RSA_EXPORT, DHE_DSS_EXPORT)

• Tests each supported TLS version for acceptance of export-grade ciphers with key lengths of 40-bits or 512-bits

• Reports a vulnerability if the server accepts any connection attempts using these weak export cipher suites

• Includes checks for specific export ciphers like DES40_CBC_SHA, RC2_CBC_40_MD5, and RC4_40_MD5

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.