Home > Tag Archives: Heartbleed

Tag Archives: Heartbleed

OpenSSL heartbeat vulnerability, “Heartbleed,” leads to random memory exposures

computer password

Microsoft’s IIS webserver does not use OpenSSL and is not vulnerable, but sites running IIS may be vulnerable if they have other vulnerable systems in front of them providing reverse proxy or load balancing capability.  The vulnerability is commonplace among Apache and nginx webservers on Linux and other Unix-like systems, as well as in appliances with web administration interfaces that are based on Unix derivatives that use OpenSSL, including routers and firewalls.  Scans of the Internet indicate that over 600,000 ... Read More »