• No events
AEC v1.0.4

Cyber Security Info

Another critical vulnerability of OpenSSL

June 6, 2014

Share Button

Only two months after the disclosure of the critical Heartbleed vulnerability, developer Masashi Kikuchi has discovered another severe weakness of the open source implementation of the TLS protocol. The vulnerability allows the MITM attacker to force OpenSSL to use weak encryption algorithm and subsequently read and even alter whole communication. All users of OpenSSL should update to the latest versions 0.9.8za, 1.0.0m and 1.0.1h.

Share Button