Nmap Development mailing list archives

Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL

From: vito () roccotechnology com
Date: Mon, 16 Jun 2014 14:06:16 -0700

 
I seem to be getting a lot of false positives with this script. It is
identifying machines as vulnerable that aren't even running OpenSSL. 

I am using it to scan an entire Class B. Can something be done to
decrease the false positives? 
 
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

NSE script detecting "CCS Injection" vulnerability in OpenSSL Claudiu Perta (Jun 08)
- Message not available
  - Message not available
    - Message not available
    - Message not available
    - Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Daniel Miller (Jun 09)
    - Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Claudiu Perta (Jun 11)
    - Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Daniel Miller (Jun 11)
    - Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Daniel Miller (Jun 11)
- Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Kent Fritz (Jun 10)
- <Possible follow-ups>
- Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL vito (Jun 19)
  - Re: NSE script detecting "CCS Injection" vulnerability in OpenSSL Claudiu Perta (Jun 19)