Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Testing for "reverse" Heartbleed

21 Apr 2014   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
Testing for "reverse" Heartbleed

While patching our systems for the recent Heartbleed vulnerability, we found that some sites (including huge web properties), which had patched their servers were still vulnerable to a variant of the attack that we're calling "reverse heartbleed." This is a post about how the vulnerability works, what we found with our public tester tool, and how you might be affected.
What's Heartbleed and "reverse" Heartbleed?

The Heartbleed vulnerability in OpenSSL allows a malicious TLS implementation to extract random chunks of memory from an unpatched peer. If you're not up to speed on Heartbleed, check out the excellent documentation on that site and check your servers ASAP to see if you might be vulnerable.

Most of the attention around the Heartbleed attack has focused on the simplest and most obvious scenario: a malicious client attacking an HTTPS server to steal cookies, private keys, and other secrets. But this isn't the only attack possible: a malicious server can also send bad heartbeat packets to a client that uses OpenSSL and extract data from that client. The TLS heartbeats used in this attack are symmetric: they can be initiated by either the "client" or the "server" in a TLS connection, and both endpoints use the same vulnerable parsing code.

A Guy

My System SpecsSystem Spec


 Testing for "reverse" Heartbleed

Thread Tools

Similar help and support threads
Thread Forum
Is it possible to reverse the "Always use this program"?
I went to open a file, and when it asked me what program I wanted to use to open it, I clicked Windows Media Centre. For some reason my Skype, Google, IE, Word Excel, Outlook etc. are now all Windows Media Centre applications and when I click on any of those shortcuts, it opens Windows Media...
General Discussion
BSOD every few hours: mostly "STOP: 0x00000F4", "c00021a" & "c0000135"
Hi everyone! Yesterday my HP laptop (Windows 7) started getting BSOD with various types of errors (mostly "STOP: 0x00000F4", "STOP: 0x0000007A", "c00021a" and one "missing %hs, c0000135"). Most of the time it restarts without any issues and works fine right after the BSOD and then an hour or two...
BSOD Help and Support
Need to add "TASKBARS" (MSese for "Launchpads", "Docks" NOT "Toolbars"
My office just upgraded, and I can no longer use Windows XP. On this system, I was able to add a separate taskbar to facilitate quick access to commonly-browsed folder locations on our vast network, and another one expedited the launching of useful programs and lists. Each task on each taskbar...
General Discussion
"Real time" testing of different Anti-Virus ........
Kinda cool ..... "In order to evaluate the effectiveness of free antivirus solutions, West Coast Labs has been running ongoing performance capability tests against a large number of samples from their ‘Real Time Project’, which leverages a geographically dispersed honeypot network to capture and...
Security News
Can't Reverse an Anti-"Pinning" Tweak & Eliminated Likely Suspects ...
I'm embarrassed, as I should have taken notes on how to reverse this at whatever point in the past I implemented this tweak. I cannot pin an application to the taskbar. I do not believe it's the IsShortcut problem, and I've tried the LNK restore anyway. I do have the "Pin to Start Menu"...
General Discussion
How do you reverse the "Always Use This Program" error?
I went to open a video, and when it asked me what program I wanted to use to open it, I clicked Windows Media Player. But I forgot to un-check the "Always Use This Program to Open This Type of File" box, and this resulted in a very annoying problem: Every item on my desktop is now a Windows...
General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 18:57.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App