Skip to content. | Skip to navigation

Program by: Information Security Education & Awareness,
Department of Electronics and Information Technology, Government of India

InfoSec Wiki

Follow me on Twitter

contact us

Personal tools

You are here: Home → InfoSec News → Rogue MD5 SSL Certificate Vulnerability

Large Text

small text

original text

text mode site

Log in: Login Name

Password

Cookies are not enabled. You must enable cookies before you can log in.; Forgot your password?; New user?

OpenID Log in: OpenID URL

Rogue MD5 SSL Certificate Vulnerability

Last Updated on: Apr 06, 2010 07:11 PM

US-CERT is aware of a public report describing how MD5 collisions can be leveraged to generate rogue SSL CA certificates. A rogue CA certificate could be used by an attacker to generate valid SSL certificates for arbitrary web sites. Using these certificates in DNS redirection attacks, an attacker could spoof an SSL protected web site and obtain sensitive information.

US-CERT will provide additional information as it becomes available.

The detailed entry of tha above is available at US-CERT

Rate the Content (2 votes):

3.0

Your Rating: No rating set

1
2
3
4
5

Document Actions

Share |

click me to know more

Sorting through huge amount of emails

Video here

InfoSec Contest

InfoSec Crossword

View All Contests

InfoSec News

Cyber crime rising in Andhra Pradesh Latest News

Think before dropping cheques in ATM deposit box Latest News

Cartoon Stories

feedback