312-50V10 · Question #882
Samuel a security administrator, is assessing the configuration of a web server. He noticed that the server permits SSlv2 connections, and the same private key certificate is used on a different serve
The correct answer is A. DROWN attack. The described scenario - SSLv2 enabled on a server sharing a private key with another server - is the exact precondition for a DROWN attack.
Question
Samuel a security administrator, is assessing the configuration of a web server. He noticed that the server permits SSlv2 connections, and the same private key certificate is used on a different server that allows SSLv2 connections. This vulnerability makes the web server vulnerable to attacks as the SSLv2 server can leak key information. Which of the following attacks can be performed by exploiting the above vulnerability?
Options
- ADROWN attack
- BPadding oracle attack
- CSide-channel attack
- DDUHK attack
How the community answered
(14 responses)- A86% (12)
- B7% (1)
- D7% (1)
Why each option
The described scenario - SSLv2 enabled on a server sharing a private key with another server - is the exact precondition for a DROWN attack.
DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) specifically exploits SSLv2's weaknesses to attack modern TLS sessions. When the same RSA private key is used on any server that permits SSLv2 connections, an attacker can leverage SSLv2 export-grade cipher weaknesses to decrypt TLS traffic on the other server, making shared key usage across SSLv2-enabled servers the defining vulnerability of this attack.
A padding oracle attack exploits improper padding validation in block cipher modes like CBC, and is not related to SSLv2 or shared key leakage.
A side-channel attack infers cryptographic secrets from physical implementation characteristics such as timing, power consumption, or electromagnetic emissions, not from SSLv2 protocol weaknesses.
DUHK (Don't Use Hardcoded Keys) exploits use of hardcoded seed values in ANSI X9.31 RNG implementations and is unrelated to SSLv2 or certificate sharing.
Concept tested: DROWN attack via SSLv2 and shared private key vulnerability
Source: https://nvd.nist.gov/vuln/detail/CVE-2016-0800
Topics
Community Discussion
No community discussion yet for this question.