File tree Expand file tree Collapse file tree 1 file changed +2
-2
lines changed
modules/auxiliary/scanner/ssl Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Original file line number Diff line number Diff line change @@ -79,9 +79,9 @@ def initialize
7979 super (
8080 'Name' => 'OpenSSL Server-Side ChangeCipherSpec Injection Scanner' ,
8181 'Description' => %q{
82- This module checks for the OpenSSL ChageCipherSpec (CCS)
82+ This module checks for the OpenSSL ChangeCipherSpec (CCS)
8383 Injection vulnerability. The problem exists in the handling of early
84- CCS messages during session negotation . Vulnerable installations of OpenSSL accepts
84+ CCS messages during session negotiation . Vulnerable installations of OpenSSL accepts
8585 them, while later implementations do not. If successful, an attacker can leverage this
8686 vulnerability to perform a man-in-the-middle (MITM) attack by downgrading the cipher spec
8787 between a client and server. This issue was first reported in early June, 2014.
You can’t perform that action at this time.
0 commit comments