After doing vulnerability assessment, we found below SSL related vulnerability :
1. SSL medium and weak cipher suites supported.
2. SSL certiicate signed with weak hashing algorithm
(The SSL certificate is signed using MD5 algorithm. This algorithm is weak and is vlunerable to collision attacks. )
3. SSL / TLS renegotiation handshakes MiTM plaintext data injection
Is there any way to fix this on permenent base ??
Please help me in this regards,