SMACK SKIP-TLS Vulnerability

SMACK SKIP-TLS Vulnerability

CVE-2015-2318 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue.

Learn more about our Web Application Penetration Testing UK.