The Transport Layer Security (TLS) Return of Bleichenbacher’s Oracle Threat vulnerability, also known as ROBOT, allows an attacker to obtain the RSA key necessary to decrypt TLS traffic under certain conditions. An attacker could exploit this vulnerability by sending crafted TLS messages to the device, which would act as an oracle and allow the attacker to carry out a chosen-ciphertext attack.
Alert Logic® appliances utilize secure versions of OpenSSL which are not vulnerable to ROBOT. For more information about Alert Logic and ROBOT, refer to our public communication on the vulnerability.
Please sign in to leave a comment.