This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

NetSight Poodle Attack TLS cipher suites

NetSight Poodle Attack TLS cipher suites

Chacko
Contributor

‎03-06-2017 12:16 PM

Hi,

our internal audit-team found a few protocol warnings inside the communication between our NetSight server and a few NAC-enabled switches (The firewall generated alarms).
I think that these warnings are generated, when the identity-management sends out information to the NetSight via the xmlc-configuration.
The threat-id says, that NetSight is using TLS1.0 with CBC which is vulnerable to the Poodle attack.

Now the question: Is there a way to influence, which cipher-suites for TLS-connections are accepted, as well in the EXOS as on the NetSight server?
Are there maybe patches? - EXOS is 16.1.3.6-patch6 on the most devices.

Best Regards
Chacko
2 REPLIES 2

Drew_C
Valued Contributor III

‎03-06-2017 06:47 PM

Hi Chacko,
Here's our Vulnerability Notice on the POODLE attack: https://extremeportal.force.com/ExtrArticleDetail?n=000008192
I'm seeing some conflicting information, but I believe this has been fixed and that there are options in some of the latest EXOS releases that will allow you to edit which ciphers are used. I'll send some emails internally to get more information

-Drew
0 Kudos

Jeremy_Gibbs
Contributor

‎03-06-2017 12:17 PM

Great find by your security team! I would love to know the answer to this and/or would like to see this patched!
0 Kudos
GTM-P2G8KFN