Exploit for Windows SSL flaw circulating
Exactly a week after Microsoft announced a SSL vulnerability affecting key Windows products, malicious hackers unveiled exploits that could lead to widespread denial-of-service attacks.
The exploit code, described in the underground as the "SSL Bomb," could allow specially crafted SSL packets to force the Windows 2000 and Windows XP operating systems to block SSL connections. On Windows Server 2003 machines, the code could cause the system to reboot, security experts warned.
The code targets a vulnerability outlined last Tuesday when the software giant released a flurry of "critical" patches to plug security holes.
By Ryan Naraine at internetnews.
[ Read more ]
- Review: HackNotes Windows Security Portable Reference (13 October 2003)
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.