Dcriptions
New vulnerabilities in the OpenSSL implementation for SSL
have been announced.
An affected network device running an SSL server based on the OpenSSL
implementation may be vulnerable to a Denial of Service (DoS) attack when
presented with a malformed certificate by a client. The network device is
vulnerable to this vulnerability even if it is configured to not
authenticate certificates from the client. There are workarounds available
to mitigate the effects of these vulnerabilities.
|
Printable Version