Penetration Testing mailing list archives

demoing sslv2 vulns

From: Robin Wood <robin () digininja org>
Date: Fri, 2 Jul 2010 15:16:31 +0100

When scanning web servers the scanners regularly come with
vulnerabilities for weak and medium ciphers and SSL v2. A client has
recently asked why these are an issue and can they have a demo of them
being exploited. I've found some technical level docs on why this is a
problem but I'm looking for some kind of walk through on how to demo
exploiting this. Does anyone have one?

Robin

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

demoing sslv2 vulns Robin Wood (Jul 03)
- Message not available
  - Re: demoing sslv2 vulns Robin Wood (Jul 04)
    - RE: demoing sslv2 vulns Cor Rosielle (Jul 07)
    - Re: demoing sslv2 vulns Todd Haverkos (Jul 12)
    - Re: demoing sslv2 vulns Yered Céspedes (Jul 13)
    - Re: demoing sslv2 vulns Richard Miles (Jul 20)
    - Re: demoing sslv2 vulns chintan dave (Jul 21)
    - Re: demoing sslv2 vulns Richard Miles (Jul 24)
    - Re: demoing sslv2 vulns chintan dave (Jul 24)
    - Re: demoing sslv2 vulns Saleh (Jul 28)
    - Re: demoing sslv2 vulns Robin Wood (Jul 28)