Vulnerability Description
The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private SSL keys for multiple devices and installations, which allows remote attackers to decrypt SSL traffic via a man-in-the-middle (MITM) attack.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sourcefire | 3D1000 | All versions |
| Sourcefire | 3D2000 | All versions |
| Sourcefire | 3D9900 | All versions |
| Sourcefire | Dc1000 | All versions |
Related Weaknesses (CWE)
References
- http://osvdb.org/65470
- http://secunia.com/advisories/40143Vendor Advisory
- http://www.securityfocus.com/archive/1/511792/100/0/threaded
- http://www.securitytracker.com/id?1024092
- http://www.vupen.com/english/advisories/2010/1438Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-10-107/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59380
- https://support.sourcefire.com/notices/notice/1437
- http://osvdb.org/65470
- http://secunia.com/advisories/40143Vendor Advisory
- http://www.securityfocus.com/archive/1/511792/100/0/threaded
- http://www.securitytracker.com/id?1024092
- http://www.vupen.com/english/advisories/2010/1438Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-10-107/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59380
FAQ
What is CVE-2010-2306?
CVE-2010-2306 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private SSL keys for multiple devices and installations, which allows remote attac...
How severe is CVE-2010-2306?
CVE-2010-2306 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2306?
Check the references section above for vendor advisories and patch information. Affected products include: Sourcefire 3D1000, Sourcefire 3D2000, Sourcefire 3D9900, Sourcefire Dc1000.