Vulnerability in OpenSSL 1.0.x  

Posted by Daniela Mehler

The H Open Source reports that a flaw in the 1.0 branch of OpenSSL can potentially be exploited to compromise clients and even execute injected code

Security expert Georgi Guninski has pointed out a security issue in the 1.0 branch of OpenSSL that potentially allows SSL servers to compromise clients. Apparently the hole can be exploited simply by sending a specially crafted certificate to the client, causing deallocated memory to be accessed in the ssl3_get_key_exchange function (in ssls3_clnt.c).

Vulnerability in OpenSSL 1.0.x


Vulnerability in OpenSSL 1.0.x



CompatDB Updates 07/30/10‘Songs From The Sun House’ - Mark Butcher releases debut album

This entry was posted on 3:33 PM .