Tag Archives: ssl exploit

Exploitation notes on CVE-2014-0160 (Heartbleed Bug)

15
Filed under New Discoveries
Tagged as , ,
  • The vulnerability is announced to the world 7th April 2014 by a website, OpenSSL Security Advisory and OpenSSL 1.0.1g release.
  • Discovered by Riku, Antti & Matti and Neel Mehta.
  • I searched the page for a web cart.
  • Shortly the next day…
  • Jared Stafford released “ssltest.py”
  • Security Company scrambled to fix.

Read More »