My Oracle Support Banner

IMF:Birthday Attacks Against TLS Ciphers With 64bit Block Size Vulnerability (Sweet32) CVE-2016-2183 (Doc ID 2919227.1)

Last updated on MARCH 13, 2024

Applies to:

Oracle Communications Performance Intelligence Center (PIC) Software - Version 10.4.0.4 and later
Information in this document applies to any platform.

Goal

Question
--------------

Dear Support team,

According to nmap scan, customer find a vulnerability on some IMFs
CVE-2016-2183: Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32)
Example : IP address XXXXXXXXX Port 8060



[cfguser@IMF ~]$ webServerCLI getVersion
Calling soap function
Version = 10.4.0.4.0_1.15.0
$ openssl s_client -connect xxxxxx:8060 -cipher "DES:3DES" -ssl3 | grep supported
140127154280264:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1275:SSL alert number 40
140127154280264:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:598:
Secure Renegotiation IS NOT supported
$ openssl s_client -connect xxxxxxx:8060 -cipher "DES:3DES" -tls1 | grep supported
depth=1 C = US, ST = North Carolina, L = Morrisville, O = Tekelec, OU = GPS, CN = XXXX, emailAddress =xxxxxxx
verify error:num=19:self signed certificate in certificate chain
verify return:0
Secure Renegotiation IS supported
$ openssl s_client -connect xxxxxx:8060 -cipher "DES:3DES" -tls1_1 | grep supported
depth=1 C = US, ST = North Carolina, L = Morrisville, O = Tekelec, OU = GPS, CN = xxxxx, emailAddress =xxxxxxx
verify error:num=19:self signed certificate in certificate chain
verify return:0
Secure Renegotiation IS supported
$ openssl s_client -connect xxxxxx:8060 -cipher "DES:3DES" -tls1_2 | grep supported
depth=1 C = US, ST = North Carolina, L = Morrisville, O = Tekelec, OU = GPS, CN = xxxxxxx, emailAddress = xxxxxxxx
verify error:num=19:self signed certificate in certificate chain
verify return:0
Secure Renegotion
 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.