SSL Certificates Vulnerable to OpenSSL Flaw on Debian |
|
| BugsAlert Home > SSL Certificates Vulnerable to OpenSSL Flaw on Debian | |
|
LinuxSecurity.com: Netcraft's June SSL Survey has found that a significant number of SSL certificates are affected by the Debian OpenSSL vulnerability, including Extended Validation SSL certificates and certificates belonging to banks. The vulnerable certificates afford opportunities to create deceptive sites which use apparently valid SSL certificates, giving the user the impression that the site belongs to the certified organisation. In the case of EV certificates, browsers will also turn the address bar green, even though the certificate may be cloned. Debian OpenSSL flaw does not seem to be over yet. It was discovered a number of SSL certificates are affected by the Debian OpenSSL. This article looks at how this attack is possible. Original Source: http://www.linuxsecurity.com/content/view/138697?rdf Learn more about SSL Certificates Vulnerable to OpenSSL Flaw on Debian |
|
| Tags: ssl certificates vulnerable openssl flaw debian | |
Related Items |
|
|
EnGarde Secure Community v3.0.18 Now Available!
|
|
|
CVE-2008-3521 (jasper)
|
|
|
CVE-2008-0882 (CUPS)
|
|
|
IBM Rational ClearCase Cross-Site Scripting Vulnerability
|
|
|
CVE-2008-1490 (Image Uploader ActiveX control, ImageUploader4)
|
|
|
SuSE Security Update Fixes Code Execution and Denial of Service Issues
|
|
|
Trojan.VBS.Shutdown.j
|
|
