Print Friendly, PDF & Email

A 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server was disclosed on 12 December named ROBOT(Return Of Bleichenbacher’s Oracle Threat). If not patched or mitigated, attackers could exploit them and gain complete control of the system and obtain sensitive information.

Therefore, BtCIRT encourages users and administrators to review the ROBOT, CERT/CC,  for more details on affected products and required actions. Cisco users are recommended to review  Cisco Security Release .

Patch and be protected.