On Monday 14 April 2003 10:18 pm, John wrote: > Is anyone aware of the existence of exploit code in the > wild that is currently targeting OpenSSL and Mod_SSL > vulnerabilities? There's a lot of that going on right now. I wrote an analysis of one particular OpenSSL exploit kit that is circulating: http://www.lurhq.com/atd.html From what I've seen, almost all of the kiddie activity on port 443 lately based on openssl-too-open.c by Solar Eclipse. -Joe -- Joe Stewart, GCIH Senior Intrusion Analyst LURHQ Corporation http://www.lurhq.com/
This archive was generated by hypermail 2b30 : Tue Apr 15 2003 - 14:05:31 PDT