Multiple Vendor OpenSSL 'DSA_verify' Function Signature Verification Vulnerability

Multiple vendors' products using OpenSSL are prone to a signature-verification vulnerability.

An attacker would likely leverage this issue by first carrying out a man-in-the-middle attack. The attacker would most likely exploit this issue to conduct phishing attacks or to impersonate legitimate sites. Other attacks are likely possible.


Privacy Statement
Copyright 2010, SecurityFocus