Blog
VERT Threat Alert: OpenSSL Vulnerability Advisory CVE-2015-0291 & CVE-2015-0204
By Lamar Bailey on Thu, 03/19/2015
Vulnerability Description
The CVE-2015-0291 vulnerability introduces the possibility of a denial of service attack against a system running OpenSSL 1.0.2. If a malicious client connects to an OpenSSL server and the server requests a certificate from the malicious client, the malicious client can return a malformed cert that may trigger a NULL...