Description

DROWN is a serious vulnerability that affects HTTPS and other services that rely on SSL and TLS, some of the essential cryptographic protocols for Internet security. These protocols allow everyone on the Internet to browse the web, use email, shop online, and send instant messages without third-parties being able to read the communication. DROWN allows attackers to break the encryption and read or steal sensitive communications, including passwords, credit card numbers, trade secrets, or financial data.

A server is vulnerable to DROWN if:

  • It allows SSLv2 connections OR
  • Its private key is used on any other server that allows SSLv2 connections, even for another protocol.

Remediation

To protect against DROWN, server operators need to ensure that their private keys are not used anywhere with server software that allows SSLv2 connections. Users can avoid this issue by disabling the SSLv2 protocol in all their SSL/TLS servers, if they've not done so already. Disabling all SSLv2 ciphers is also sufficient, provided the patches for CVE-2015-3197 (fixed in OpenSSL 1.0.1r and1.0.2f) have been deployed.

References

The DROWN Attack

Cross-protocol attack on TLS using SSLv2 (DROWN) (CVE-2016-0800)

Related Vulnerabilities

Axis development mode enabled in WEB-INF/server-config.wsdd

RoR Database Configuration File Detected

Verb tampering via misconfigured security constraint

Apache mod_negotiation filename bruteforcing

Unprotected Kong Gateway Admin API interface

Severity

High

Classification

CVE-2016-0800 CWE-310 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

Configuration Weak Crypto