Hi,
While assesing vulnerabilities I came accross a problem. A vulnerability name "(2588513) TLS-SSL Server Blockwise Chosen-Boundary Browser Weakness, (CVE-2011-3389)" was given by the tool. Though this vulnerability is related to the certificate of the web browser, the CISCO device here is not connected to any web browser. I wanted to know that how is this possible that is the web access is already disabled how the tool can show this vulnerability? Is it a false possitive?
Explanation would be highly appriciated.
Thanx
While assesing vulnerabilities I came accross a problem. A vulnerability name "(2588513) TLS-SSL Server Blockwise Chosen-Boundary Browser Weakness, (CVE-2011-3389)" was given by the tool. Though this vulnerability is related to the certificate of the web browser, the CISCO device here is not connected to any web browser. I wanted to know that how is this possible that is the web access is already disabled how the tool can show this vulnerability? Is it a false possitive?
Explanation would be highly appriciated.
Thanx
