Main
Vulnerability Database
Exploits
ID:18 - Exploit for Man-in-the-Middle attack in OpenSSL - CVE-2014-0224
ID:18 - Exploit for Man-in-the-Middle attack in OpenSSL - CVE-2014-0224
Published: March 18, 2020
Vulnerability identifier: #VU2950
Vulnerability risk: Medium
CVE-ID: CVE-2014-0224
CWE-ID: CWE-310
Exploitation vector: Remote access
Vulnerable software:
OpenSSL
OpenSSL
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to decrypt encrypted connections.
The vulnerability exists due to an error in OpenSSL. A remote attacker with ability to intercept network traffic can decrypt SSL connection and gain access to sensitive data.
The vulnerability exists due to an error in OpenSSL. A remote attacker with ability to intercept network traffic can decrypt SSL connection and gain access to sensitive data.
Remediation
Update to version 0.9.8za, 1.0.0m or 1.0.1h.