je.st
news
New OpenSSL vulnerability puts encrypted communications at risk of spying
2014-06-05 21:15:55| InfoWorld: Top News
A newly discovered vulnerability that allows spying on encrypted SSL/TLS communications has been identified and fixed in the widely used OpenSSL library. The vulnerability, which is being tracked as CVE-2014-0224, can be exploited to decrypt and modify SSL (Secure Sockets Layer) and TLS (Transport Layer Security) traffic between clients and servers that use OpenSSL, if the version of the library on the server is 1.0.1 or newer.
Tags: of
risk
communications
puts
Category:Information Technology