Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » New OpenSSL MitM flaw affects all clients, some server versions

New OpenSSL MitM flaw affects all clients, some server versions

2014/06/05

Threatpost - (International) A security researcher identified a remotely exploitable vulnerability in all versions of OpenSSL that could be used in a man-in-the-middle (MitM) attack to decrypt traffic between vulnerable clients and servers. The researcher reported that the vulnerability appears to have existed in OpenSSL's code since 1998.

Source: http://threatpost.com/new-openssl-mitm-flaw-affects-all-clients-some-server-versions

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:20:27