SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  OpenSSL Heartbleed Information Disclosure 5

Category: WEB-TLS      

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160


Relevant Information