Heartbleed Revisited: Is it Just a Buffer Over-Read?

Heartbleed Revisited: Is it Just a Buffer Over-Read?

In this work, we analyze in detail the weaknesses underlying the Heartbleed vulnerability, CVE-2014-0160, and show why and how highly sensitive information could be exposed via buffer over-read.

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IT professional 2023-03, Vol.25 (2), p.83-89
Hauptverfasser: Bojanova, Irena, Galhardo, Carlos Eduardo C.
Format: Artikel
Sprache:eng
Schlagworte:
Buffers
Codes
Computer bugs
Critical infrastructure
Cyberspace
Full stack
Software
Software libraries
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In this work, we analyze in detail the weaknesses underlying the Heartbleed vulnerability, CVE-2014-0160, and show why and how highly sensitive information could be exposed via buffer over-read.
ISSN:1520-9202
1941-045X
DOI:10.1109/MITP.2023.3259119