, The Register 2003-02-21
Swiss security researchers have discovered an attack against implementations of the ubiquitous SSL protocol that could potentially compromise email passwords, though not ecommerce transactions.
Expand all |
Post comment
As this is a man-in-the middle attack timed-based on the server error messages, the attacker must also reside "closed" to the server which decrease the feasability on a real situation.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/articles/2583/18347#18347