Signature Detail

Short Name	SSL:AUDIT:DHEEXP-512CPHR-LOGJAM
Severity	Info
Recommended	Yes
Category	SSL
Keywords	OpenSSL Logjam 512-Bit DHE_EXPORT Cipher Suite
Release Date	2015/06/01
Update Number	2500
Supported Platforms	idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SSL: OpenSSL Logjam 512-Bit DHE_EXPORT Cipher Suite

This signature detects a SSL-SERVER-HELLO response with 'DHE_EXPORT' RSA cipher suites. Most 'modern' clients (e.g., web browsers) won't offer export grade cipher suites as part of the negotiation process as they are considered as weak encryption.

References

CVE: CVE-2015-4000
URL: https://technet.microsoft.com/en-us/library/security/ms15-055
URL: https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/
URL: http://www.thebigcomputing.com/2015/05/logjam-tls-vulnerability-exposed/
URL: http://www.securityweek.com/logjam-tls-vulnerability-exposes-websites-mail-servers-researchers
URL: http://tonyarcieri.com/imperfect-forward-secrecy-the-coming-cryptocalypse
URL: https://weakdh.org/imperfect-forward-secrecy.pdf
URL: https://weakdh.org/logjam.html
URL: https://weakdh.org/
URL: http://www.openwall.com/lists/oss-security/2015/05/20/2

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

SSL: OpenSSL Logjam 512-Bit DHE_EXPORT Cipher Suite

References