Fwd: OpenSSL worm in the wild
dep
dep
Mon May 17 11:37:38 PDT 2004
fyi, everyone.
---------- Forwarded Message ----------
Subject: OpenSSL worm in the wild
Date: Fri, 13 Sep 2002 18:16:33 +0100
From: Ben Laurie <ben at algroup.co.uk>
To: Bugtraq <BUGTRAQ at securityfocus.com>, Cryptography
<cryptography at wasabisystems.com>, cypherpunks
<cypherpunks at einstein.ssz.com>, Apache SSL
<apache-ssl at lists.aldigital.co.uk>
I have now seen a worm for the OpenSSL problems I reported a few
weeks back in the wild. Anyone who has not patched/upgraded to
0.9.6e+ should be _seriously worried_.
It appears to be exclusively targeted at Linux systems, but I
wouldn't count on variants for other systems not existing.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
-------------------------------------------------------
--
dep
http://www.linuxandmain.com -- outside the box, barely within the
envelope, and no animated paperclip anywhere.
More information about the Linux-users
mailing list