SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Irregular OpenSSL Traffic 6

Category: INFO      

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160


Relevant Information