- If DES (and 3des) ciphers are enabled birthday attacks are possible since this cipher has only 64bit block size.
- As said above it is recommended to disable SSL versions in the server, if not 3des cipher must be disabled. If no better ciphers other than DES or RC4 are supported currently in server then the server must be upgraded.
- We can you IISCrypto tool to disable these ciphers. Please check the KB on IISCrypto, search for title name "Configuring Protocols, Ciphers or Hashes using IIS Crypto".
Vulnerability name that confirms the type of attack is birthday attack are,
- ssl-3des-ciphers
- ssl-cve-2016-2183-sweet32
Here is a link to know more on sweet32 vulnerability,