Scribd Logo
Upload

Welcome to Scribd!

  • Heartbleed: CVE-2014-0160 Tanner Hildebrand August 2020

    Uploaded by

    Tanner Hildebrand
    16 views15 pages
    The document discusses the Heartbleed vulnerability, a serious bug in the OpenSSL cryptographic software library that exposed the private keys and sensitive data of users. Heartbleed allowed anyone on the internet to read the memory of systems protected by the vulnerable versions of the OpenSSL software. The bug was introduced in 2012 and remained undetected until its disclosure in 2014, leaving many systems exposed to exploitation for over 2 years.

    Original Description:

    Short presentation on heartbleed.

    Original Title

    heartbleed

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses the Heartbleed vulnerability, a serious bug in the OpenSSL cryptographic software library that exposed the private keys and sensitive data of users. Heartbleed allowed anyone on the internet to read the memory of systems protected by the vulnerable versions of the OpenSSL software. The bug was introduced in 2012 and remained undetected until its disclosure in 2014, leaving many systems exposed to exploitation for over 2 years.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    16 views15 pages

    Heartbleed: CVE-2014-0160 Tanner Hildebrand August 2020

    Uploaded by

    Tanner Hildebrand
    The document discusses the Heartbleed vulnerability, a serious bug in the OpenSSL cryptographic software library that exposed the private keys and sensitive data of users. Heartbleed allowed anyone on the internet to read the memory of systems protected by the vulnerable versions of the OpenSSL software. The bug was introduced in 2012 and remained undetected until its disclosure in 2014, leaving many systems exposed to exploitation for over 2 years.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 15

    HEARTBLEED

    CVE-2014-0160
    Tanner Hildebrand
    August 2020
    REFERENCES
    • https://heartbleed.com/
    • https://www.openssl.org/news/secadv/20140407.txt
    • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160
    • https://xkcd.com/1354/
    • https://stackabuse.com/heartbleed-bug-explained/
    • https://gizmodo.com/how-heartbleed-works-the-code-behind-the-internets-s
    e-1561341209
    • https://www.csoonline.com/article/3223203/what-is-the-heartbleed-bug-how
    -does-it-work-and-how-was-it-fixed.html
    • https://arstechnica.com/information-technology/2014/04/critical-crypto-bug-
    exposes-yahoo-mail-passwords-russian-roulette-style/
    • https://blog.malwarebytes.com/exploits-and-vulnerabilities/2019/09/everythi
    ng-you-need-to-know-about-the-heartbleed-vulnerability/
    ADDITIONAL
    • Durumeric, Z., Payer, M., Paxson, V., Kasten, J., Adrian, D.,
    Halderman, J. A., Bailey, M., Li, F., Weaver, N., Amann, J., &
    Beekman, J. (2014). The Matter of Heartbleed. Proceedings of
    the 2014 Conference on Internet Measurement Conference -
    IMC ’14. the 2014 Conference.
    https://doi.org/10.1145/2663716.2663755
    HEARTBLEED
    • Implementation error in OpenSSL code for RFC 6520
    • Not a design flaw
    • Introduced in OpenSSL version 1.0.1 in March 2012
    • Discovered in early 2014
    • Google Security
    • Codenomicon
    • Patched in OpenSSL 1.0.1g in April 2014
    • “Buffer overread”
    https://xkcd.com/1354/
    https://xkcd.com/1354/
    https://xkcd.com/1354/
    https://xkcd.com/1354/
    https://xkcd.com/1354/
    https://xkcd.com/1354/
    OFFENSIVE CODE OpenSSL 1.0.1 – 1.01f

    unsigned char *p = &s->s3->rrec.data[0], *pl;


    pl = p;

    buffer = OPENSSL_malloc(1 + 2 + payload + padding);


    bp = buffer;

    payload is the first two bytes of p

    memcpy(bp, pl, payload);

    https://stackabuse.com/heartbleed-bug-explained/
    IMPACT
    • Any data allocated on the heap around the pl pointer might be
    exposed.

    • Server Private Keys


    • User passwords
    • Credit card information

    • Server
    • Client

    https://arstechnica.com/information-technology/2014/04/critical-crypto-bug-exposes-yahoo-mail-passwords-russian-roulette-style/
    PATCHED OpenSSL 1.0.1g

    /* Read type and payload length first */


    if (1 + 2 + 16 > s->s3->rrec.length)
    return 0; /* silently discard */
    hbtype = *p++;
    n2s(p, payload);
    if (1 + 2 + payload + 16 > s->s3->rrec.length)
    return 0; /* silently discard ... */
    pl = p;

    https://stackabuse.com/heartbleed-bug-explained/
    DEMONSTRATION
    • http://www.cis.syr.edu/~wedu/seed/Labs_12.04/Networking/Hea
    rtbleed/

    You might also like