Last Modified: May 01, 2019
See more info
Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1, 13.1.0, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 13.1.1, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199
Opened: Oct 11, 2017
Forward Proxy SSL at server side may send a wrong SNI extension when the client does not send one in its Client Hello message.
The server side of the proxy will use a wrong SNI in SSL handshake.
Forward Proxy SSL when the client does not send SNI extension in ClientHello, the server side will send a wrong SNI extension in its ClientHello.
There is no workaround.
The server side will not send SNI extension in ClientHello if the client does not send one in its ClientHello.