Monday, December 21, 2009

TLS Renegotiation Vulnerability: Proof of Concept Code

Information about a vulnerability in the TLS protocol was published in the beginning of November 2009. Attackers can take advantage of that vulnerability to inject arbitrary prefixes into a network connection protected by TLS. This can result in severe vulnerabilities, depending on the application layer protocol used over TLS

For more info and Source Code check: http://www.redteam-pentesting.de

No comments: