A proof of concept exploit for the man-in-the-middle vulnerability related to SSL/TLS
posted in Reading material, Stuff on Nov 8th, 2009
This is the document with the proof of concept which explains the attack on the SSL/TLS reconnect vulnerability. It allows to inject data into the encrypted data stream, often without detection by either end of the connection. I normally don’t publish exploit codes because of it’s short time value. But this one is rather special. [...]