Signature Detail
Short Name |
SSL:AUDIT:DTLS-CLT-HELLO-FRAG |
|---|---|
Severity |
Low |
Recommended |
No |
Category |
SSL |
Keywords |
DTLS Client Hello Fragmentation |
Release Date |
2014/06/06 |
Update Number |
2362 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SSL: DTLS Client Hello Fragmentation
This signature detects unusual fragmenting on the DTLS Client Hello handshake messages. These messages typically don't require fragmentation due their small payload size. Such messages can potentially indicate malicious activity.
References
- BugTraq: 67900
- CVE: CVE-2014-0195