Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.
Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify
"Heart-bleed" is a serious and unique vulnerability in the...
Prochain SlideShare
Chargement dans…5
×

sur

Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify Scanner Slide 1
Prochain SlideShare
Heart Bleed Bug Webcast part2 - SANS Institute for IT Security
Suivant
Télécharger pour lire hors ligne et voir en mode plein écran

0 j’aime

Partager

Télécharger pour lire hors ligne

Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify Scanner

Télécharger pour lire hors ligne

Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions.

  • Soyez le premier à aimer ceci

Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify Scanner

  1. 1. Avert Open SSL Heart-bleed Vulnerability with eGestalt’s Aegify "Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions. Given that the Secure-Socket Layer (SSL) and Transport Layer Security (TLS) are pivotal in Internet security, this security chasm caused by "Heart-bleed" is grim. Versions 1.0.1 through 1.0.1f are vulnerable to exploits, and stand to expose user credentials, credit card data, sensitive documents and the server’s certificate itself. Unlike the previous attacks seen recently, "Heart-bleed" doesn’t actually require any interesting cryptographic software. As the attacks leave no evidence in server logs, there is in reality no way of knowing if the bug has been actively exploited – thus making the effects more devastating than ever. Regardless of whether you realize it, there is a lot of the security infrastructure you rely on that is dependent in some way on OpenSSL, and unfortunately the reliance on OpenSSL is only increasing. The risk with the OpenSSL Heart bleed vulnerability is bizarre, as there are a large number of private keys exposed on the Internet, leading to potential memory leaks in server-client interactions. Click here to learn more.

Heart-bleed" is a serious and unique vulnerability in the most accepted version of SSL. A large part of the web servers on the internet use OpenSSL to safeguard data and user accounts, and the latest "Heart-bleed bug" only affects OpenSSL’s 1.0.1 and the 1.01f versions.

Vues

Nombre de vues

245

Sur Slideshare

0

À partir des intégrations

0

Nombre d'intégrations

1

Actions

Téléchargements

1

Partages

0

Commentaires

0

Mentions J'aime

0

×