Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
fropert_FTNT
Staff
Staff

Created on ‎01-07-2016 02:03 AM

Article Id 197006

PSIRT Note: SLOTH - CVE-2015-7575

Description
SLOTH main concern is about to attack TLS 1.2 client authentication (The TLS server has a certificate list that are valid and the client must provide it) with RSA-MD5 as the chosen signature algorithm.

The following two important things noted in the paper must be considered:
  • The TLS channel binding attacks is not a concern for FortiOS products
  • The paper mentions IKE and SSH but it requires a chosen-prefix attack on SHA-1 which is still considered impractical as of today horses power hence FortiOS IKE/IPSec and SSH are not affected

FortiOS SSL/TLS libraries consider MD5 as a weak signature algorithm and both follow the RFC 5246 section 7.4.1.4.1 recommendations:
  • FortiOS 5.0.2 and later are not affected as MD5 will never be negotiated
  • FortiOS 5.2, 5.4 and future releases are not affected

Public research URL: http://www.mitls.org...s/attacks/SLOTH

Solution
Upgrade to FortiOS 5.0.2 or later.

Labels:
737
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.