Theoretically, this vulnerability allows hackers to intercept communications between Android devices and Wi-Fi routers. We already know that the Android 4.1.1 device is affected by the Heartbleed, but grania claims that iOS and OSX devices may also be attacked by Cupid.
It is unclear how many devices are affected, but the impact is greater than that of Heartbleed. The most vulnerable is the EAP-based router.
The Heartbleed vulnerability was found last month. It exists in the encryption protocol OpenSSL, which is the most serious security vulnerability exposed by OpenSSL this year.
With this vulnerability, hackers can obtain the Logon account passwords of nearly 1/3 users starting with https in real time, covering a large number of online banking, shopping websites, and emails. It is reported that tens of millions of network servers may be affected by this vulnerability. In addition, the vulnerability has existed for about two years.
OpenSSL TLS heartbeat read remote information leakage (CVE-2014-0160)
Severe OpenSSL bug allows attackers to read 64 KB of memory, fixed in half an hour in Debian
OpenSSL "heartbleed" Security Vulnerability
Provides FTP + SSL/TLS authentication through OpenSSL and implements secure data transmission.
OpenSSL Heartbleed vulnerability upgrade method
For more information about Heartbleed, click here.
Heartbleed: click here
This article permanently updates the link address:
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
