Read the original article: The Fuzzing Files: The Anatomy of a Heartbleed
In late March 2014, two teams of security researchers independently started fuzz testing OpenSSL, an open source utility that encrypts traffic from a web browser to a server and forms the basis of trusted transactions online. On April 1, Neel Mehta of Google disclosed (privately) an exploitable vulnerability to OpenSSL that would be independently discovered and confirmed on April 3 by a Finnish company, Codenomicon (now Synopsys). On April 8, 2014, the Heartbleed vulnerability was announced publicly for the first time with a unique name, a logo, and website, and more importantly a patched version of OpenSSL.
The post The Fuzzing Files: The Anatomy of a Heartbleed appeared first on Security Boulevard.
Read the original article: The Fuzzing Files: The Anatomy of a Heartbleed