Comment 20Z Not a Big One

Story

OpenSSL CCS Injection Vulnerability

Preview

Not a Big One (Score: 0)

by Anonymous Coward on 2014-06-06 01:32 (#20Z)

If I understand correctly, this only applies to OpenSSL client to OpenSSL server communication, NOT browser to OpenSSL server (?).

So while huge for those who relied on it this way, the pool of vulnerability is smaller than Heartbleed.

Junk Status

Marked as [Not Junk] by evilviper@pipedot.org on 2015-01-04 00:16