PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 06:01:28 +00:00
Code Issues Projects Releases Wiki Activity

Check TLS body protocol for compatibility in ssl-enum-ciphers

Browse Source 
Haven't seen this, and it shouldn't happen, but it's possible for a
server to send the same protocol version in the record, but a different
one in the body. This wouldn't be valid, so we should reject it.
This commit is contained in:
dmiller
2014-10-16 04:07:07 +00:00
parent 9e199c0213
commit 917842059b
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
scripts/ssl-enum-ciphers.nse
View File

@@ -372,6 +372,10 @@ local function find_ciphers_group(host, port, protocol, group)
elseif record["type"] ~= "handshake" or record["body"][1]["type"] ~= "server_hello" then elseif record["type"] ~= "handshake" or record["body"][1]["type"] ~= "server_hello" then
ctx_log(2, protocol, "Unexpected record received.") ctx_log(2, protocol, "Unexpected record received.")
break break
elseif record["body"][1]["protocol"] ~= protocol then
ctx_log(1, protocol, "Protocol rejected.")
protocol_worked = nil
break
else else
protocol_worked = true protocol_worked = true
name = record["body"][1]["cipher"] name = record["body"][1]["cipher"]