¿Mi servidor es vulnerable?
Para sacarse las dudas: CONTACTENOS EN FORMA INMEDIATA a soporte@kwell.net
Este bug según todas las fuente recopiladas puede llegar a afectar a dos tercios de los servidores de Internet!
INFORMACIÓN RECOPILADA (muy interesante)
OpenSSL Security Advisory [07 Apr 2014]: https://www.openssl.org/news/secadv_20140407.txt
Detalle de la Vulnerabilidad: http://www.cvedetails.com/cve/CVE-2014-0160
Explicación en profundidad: http://heartbleed.com/ (muy interesante)
Nota de Electronic Frontier Foundation: https://www.eff.org/deeplinks/2014/04/why-web-needs-perfect-forward-secrecy (imperdible)
Proveedores afectados: https://www.kb.cert.org/vuls/byvendor?searchview&Query=FIELD+Reference=720951&SearchOrder=4 (la lista es impresionante, la reproducimos parcialmente señalando que mucho proveedores no han informado o verificado el estado propio, por lo tanto esta lista variará con el correr de los días)
OpenSSL heartbeat extension read overflow discloses sensitive information
- VendorStatusDate NotifiedDate Updated
- AmazonAffected-09 Apr 2014
- Aruba Networks, Inc.Affected-09 Apr 2014
- Bee WareAffected-09 Apr 2014
- Blue Coat SystemsAffected07 Apr 201409 Apr 2014
- Cisco Systems, Inc.Affected07 Apr 201410 Apr 2014
- Debian GNU/LinuxAffected07 Apr 201408 Apr 2014
- F5 Networks, Inc.Affected07 Apr 201409 Apr 2014
- Fedora ProjectAffected07 Apr 201408 Apr 2014
- Fortinet, Inc.Affected07 Apr 201409 Apr 2014
- FreeBSD ProjectAffected07 Apr 201409 Apr 2014
- Gentoo LinuxAffected07 Apr 201408 Apr 2014
- GoogleAffected07 Apr 201409 Apr 2014
- IBM CorporationAffected07 Apr 201411 Apr 2014
- Juniper Networks, Inc.Affected07 Apr 201409 Apr 2014
- Mandriva S. A.Affected07 Apr 201407 Apr 2014
- McAfeeAffected07 Apr 201411 Apr 2014
- NetBSDAffected07 Apr 201408 Apr 2014
- nginxAffected-11 Apr 2014
- OpenBSDAffected07 Apr 201408 Apr 2014
- OpenSSLAffected-09 Apr 2014
- openSUSE projectAffected-09 Apr 2014
- OpenVPN TechnologiesAffected-09 Apr 2014
- Red Hat, Inc.Affected07 Apr 201408 Apr 2014
- Slackware Linux Inc.Affected07 Apr 201409 Apr 2014
- Sophos, Inc.Affected-09 Apr 2014
- UbuntuAffected07 Apr 201409 Apr 2014
- VMwareAffected07 Apr 201409 Apr 2014
- Watchguard Technologies, Inc.Affected-09 Apr 2014
- Wind River Systems, Inc.Affected07 Apr 201411 Apr 2014
- BrocadeNot Affected-11 Apr 2014
- EfficientIPNot Affected-09 Apr 2014
- Foundry Networks, Inc.Not Affected07 Apr 201411 Apr 2014
- InfobloxNot Affected07 Apr 201408 Apr 2014
- m0n0wallNot Affected07 Apr 201408 Apr 2014
- Openwall GNU/*/LinuxNot Affected07 Apr 201409 Apr 2014
- PeplinkNot Affected07 Apr 201408 Apr 2014
- QuaggaNot Affected07 Apr 201407 Apr 2014
- SUSE LinuxNot Affected07 Apr 201408 Apr 2014
- VyattaNot Affected07 Apr 201411 Apr 2014
Deja un comentario