DTLS padding oracle still an issue?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: DTLS padding oracle still an issue?
From: christian.fahr at stud.tu-darmstadt.de (Christian Fahr)
Date: Fri, 15 May 2015 01:05:10 +0200

Hi all,

regarding this
http://nmav.gnutls.org/2013/11/inside-ssl-vpn-protocol.html blogpost by
Nikos Mavrogiannopoulos in 2013 and Ciscos implementation of pre-DTLS
1.0 in the AnyConnect SSL VPN protocol.
Is this padding attack still an issue or has this been fixed in the
meantime? If so, how likely is this to be exploitable?

Greetings
Christian

Follow-Ups:
- DTLS padding oracle still an issue?
  - From: Nikos Mavrogiannopoulos

Prev by Date: problem with openconnect
Next by Date: DTLS padding oracle still an issue?
Previous by thread: problem with openconnect
Next by thread: DTLS padding oracle still an issue?
Index(es):
- Date
- Thread

[Index of Archives] [Linux Samsung SoC] [Linux Rockchip SoC] [Linux Actions SoC] [Linux for Synopsys ARC Processors] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]

Powered by Linux