News
News & events
ROBOT Attack: 19-Year-Old Bleichenbacher Attack returned
2017-12-30


A 19-year-old vulnerability has been re-discovered in the RSA implementation from at least 8 different vendors—including F5, Citrix, and Cisco—that can give man-in-the-middle attackers access to encrypted messages.



Dubbed ROBOT (Return of Bleichenbacher's Oracle Attack), the attack allows an attacker to perform RSA decryption and cryptographic operations using the private key configured on the vulnerable TLS servers.

ROBOT attack is nothing but a couple of minor variations to the old Bleichenbacher attack on the RSA encryption protocol.


 

 

According to the researchers, some of the most popular websites on the Internet, including Facebook and Paypal, are affected by the vulnerability.