<<< Date Index >>> <<< Thread Index >>>

Recent OpenSSL exploits

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Recent OpenSSL exploits
From: "Ryan's spam address" <lists@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 2 Jun 2007 16:18:32 -0500
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20070602070753.31153.qmail@xxxxxxxxxxxxxxxxx> <814b9d50706020917k60ae4fb1u9db432ee4a2df6ff@xxxxxxxxxxxxxx>

Has anyone seen anything floating around for the OpenSSLSSL_Get_Shared_Ciphers Buffer Overflow (CVE-2006-3738/Bugtraq ID 20249)?

I've been told there is one that has recently been floating around withblackhats, but I'm unable to confirm/deny.



Ryan

References:
- MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
  - From: yaser
- Re: MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
  - From: str0ke

Prev by Date: CERN İmage Map Dispatcher
Next by Date: uTorrent overflow
Previous by thread: Re: MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
Next by thread: iDefense Security Advisory 06.01.07: Symantec VERITAS Storage Foundation Administration Service DoS Vulnerability
Index(es):
- Date
- Thread