aXes User Forum

The Meeting Place for aXes users to ask questions, supply answers and provide tips and techniques about different ways to use aXes.
https://axes.lansa.com.au/

ROBOT Vulnerability

https://axes.lansa.com.au/viewtopic.php?t=87

Page 1 of 1

ROBOT Vulnerability

Posted: 10 Jan 2018, 22:38
by jaimosky
Hi,

I know it is out of scope, but anyone knows how to solve the vulnerability ROBOT?
Anybody had done this before?

Thanks a lot.
Jaime

Re: ROBOT Vulnerability

Posted: 12 Jan 2018, 20:12
by jaimosky
I have just read this paper in internet.

http://www-01.ibm.com/support/docview.w ... as2MA46852

The only way to do that is to disable the RSA key exchange cipher suites.

Re: ROBOT Vulnerability

Posted: 15 Jan 2018, 09:38
by jeanmichel
Hi,

Yes it appears that this type of attacks targets TLS-RSA or RSA ciphers and the only way to prevent this is to disable these ciphers in the QSSLCSL system value.
All times are UTC+10:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited