OpenSSL Ciphersuite Downgrade Security Weakness

OpenSSL is prone to a security weakness that may allow attackers to downgrade the ciphersuite.

Successfully exploiting this issue in conjunction with other latent vulnerabilities may allow attackers to gain access to sensitive information or gain unauthorized access to an affected application that uses OpenSSL.

Releases prior to OpenSSL 1.0.0c are affected.


 

Privacy Statement
Copyright 2010, SecurityFocus